By using AWS re:Post, you agree to the Terms of Use

Storage

AWS offers a complete range of services for you to store, access, govern, and analyze your data to reduce costs, increase agility, and accelerate innovation. Select from object storage, file storage, and block storage services, backup, and data migration options to build the foundation of your cloud IT environment.

Recent questions

see all
1/18

DescribeFrameworkByUUID permission missing on service-linked role AWSServiceRoleForBackupReports

This is causing CloudTrail to log many access denied attempts, triggering an alarm: ```json { "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "xxxxxxxxxxxxxxxxxxx:StorageDescribeFrameworkUUID", "arn": "arn:aws:sts::xxxxxxxxxxxxxxxxxxx:assumed-role/AWSServiceRoleForBackupReports/StorageDescribeFrameworkUUID", "accountId": "xxxxxxxxxxxxxxxxxxx", "accessKeyId": "xxxxxxxxxxxxxxxxxxx", "sessionContext": { "sessionIssuer": { "type": "Role", "principalId": "xxxxxxxxxxxxxxxxxxx", "arn": "arn:aws:iam::xxxxxxxxxxxxxxxxxxx:role/aws-service-role/reports.backup.amazonaws.com/AWSServiceRoleForBackupReports", "accountId": "xxxxxxxxxxxxxxxxxxx", "userName": "AWSServiceRoleForBackupReports" }, "webIdFederationData": {}, "attributes": { "creationDate": "2022-09-28T08:56:37Z", "mfaAuthenticated": "false" } }, "invokedBy": "reports.backup.amazonaws.com" }, "eventTime": "2022-09-28T08:56:37Z", "eventSource": "backup.amazonaws.com", "eventName": "DescribeFrameworkByUUID", "awsRegion": "ca-central-1", "sourceIPAddress": "reports.backup.amazonaws.com", "userAgent": "reports.backup.amazonaws.com", "errorCode": "AccessDenied", "requestParameters": null, "responseElements": null, "requestID": "xxxxxxxxxxxxxxxxxxx", "eventID": xxxxxxxxxxxxxxxxxxx", "readOnly": true, "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "xxxxxxxxxxxxxxxxxxx", "eventCategory": "Management" } ``` It is impossible to delete the role: ``` Errors during deleting roles. Role AWSServiceRoleForBackupReports not deleted. There are resources that rely on this role. ``` And it is not possible to add custom permissions to the service-linked role. It does not seem to be possible to configure a custom role for the backup reports either. What can I do ?
0
answers
0
votes
10
views
asked 21 hours ago

AWS Backup VSS timeout

I'm trying to set up AWS Backup for EC2 instance with Windows Server 2022 and MS SQL Server, following this instruction https://docs.aws.amazon.com/aws-backup/latest/devguide/windows-backups.html I've done all the steps, but the on-demand backup job finishes with the message: > "Windows VSS Backup attempt failed because of timeout on VSS enabled snapshot creation" The file "C:\Program Files\Amazon\AwsVssComponents\vsserr.log" is empty, "C:\Program Files\Amazon\AwsVssComponents\vssout.log" contains information about Shadow copies of devices and ends with the message "Snapshot creation done." There are several messages related to VSS in Windows Log, for example: ``` Volume Shadow Copy Service error: A critical component required by the Volume Shadow Copy service is not registered. This might happened if an error occurred during Windows setup or during installation of a Shadow Copy provider. The error returned from CoCreateInstance on class with CLSID {4baeabae-7018-43e6-8bfb-fb15aaa3a675} and Name SW_PROV is [0x80040154, Class not registered ]. Operation: Obtain a callable interface for this provider List interfaces for all providers supporting this context Check If Volume Is Supported by Provider Add a Volume to a Shadow Copy Set Context: Provider ID: {4aaed461-b7bb-4125-a906-31c79791b47d} Class ID: {4baeabae-7018-43e6-8bfb-fb15aaa3a675} Snapshot Context: 2 Snapshot Context: 2 Execution Context: Coordinator Provider ID: {00000000-0000-0000-0000-000000000000} ``` What else can be checked and how to fix the timeout error?
0
answers
0
votes
3
views
asked a day ago

Browser-Based Upload using HTTP POST

This is my HTML POST Form. ``` <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> </head> <body> <form action="http://sigv4examplebucket.s3.amazonaws.com/" method="post" enctype="multipart/form-data"> Key to upload: <input type="input" name="key" value="user/user1/${filename}" /><br /> <input type="hidden" name="acl" value="public-read" /> <input type="hidden" name="success_action_redirect" value="http://sigv4examplebucket.s3.amazonaws.com/successful_upload.html" /> Content-Type: <input type="input" name="Content-Type" value="image/jpeg" /><br /> <input type="hidden" name="x-amz-meta-uuid" value="14365123651274" /> <input type="hidden" name="x-amz-server-side-encryption" value="AES256" /> <input type="text" name="X-Amz-Credential" value="AKIAIOSFODNN7EXAMPLE/20151229/us-east-1/s3/aws4_request" /> <input type="text" name="X-Amz-Algorithm" value="AWS4-HMAC-SHA256" /> <input type="text" name="X-Amz-Date" value="20151229T000000Z" /> Tags for File: <input type="input" name="x-amz-meta-tag" value="" /><br /> <input type="hidden" name="Policy" value='<Base64-encoded policy string>' /> <input type="hidden" name="X-Amz-Signature" value="<signature-value>" /> File: <input type="file" name="file" /> <br /> <!-- The elements after this will be ignored --> <input type="submit" name="submit" value="Upload to Amazon S3" /> </form> </html> ``` I got this from the AWS S3 Docs shown below. [https://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-post-example.html](https://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-post-example.html) From AWS Console I have gotten my security credentials: Access Key = XXXX Secret Ket = XXXX I am aware that I need to set values for "Policy" and "X-Amz-Signature" but I am not sure as to how to do that. In the docs they have mentioned that I need to StringToSign and get the Policy/Signature but I am not sure how to do that. Can someone help me as to how to generate Policy(Base64-encoded policy string) and Signature for my HTML FORM ?
1
answers
0
votes
9
views
asked a day ago

Recent articles

see all
1/2

Popular users

see all
1/18

Learn AWS faster by following popular topics

1/1