Cloud Backup for AWS

Cloud Backup for AWS アプリ タイプのアプリ プロファイルを作成すると、名前が AWSBackupAdminRole である IAM ロールは AWS 環境に作成されます。その IAM ロールに追加されるポリシーは、以下に一覧表示されます。

•    ebs:*

•    ec2:AttachVolume

•    ec2:CopySnapshot

•    ec2:DeleteSnapshot

•    ec2:DescribeAddresses

•    ec2:DescribeInstances

•    ec2:DescribeInstanceAttribute

•    ec2:DescribeRegions

•    ec2:CreateImage

•    ec2:DescribeSnapshots

•    ec2:DeleteVolume

•    ec2:DescribeNetworkInterfaces

•    ec2:StartInstances

•    ec2:CreateSecurityGroup

•    ec2:DescribeVolumes

•    ec2:CreateSnapshot

•    ec2:DescribeKeyPairs

•    ec2:DescribeInstanceStatus

•    ec2:CreateInstanceExportTask

•    ec2:DetachVolume

•    ec2:TerminateInstances

•    ec2:CreateTags

•    ec2:RegisterImage

•    ec2:ModifyNetworkInterfaceAttribute

•    ec2:RunInstances

•    ec2:StopInstances

•    ec2:AllocateAddress

•    ec2:DescribeSecurityGroups

•    ec2:CreateVolume

•    ec2:CreateNetworkInterface

•    ec2:DescribeImages

•    ec2:CreateSnapshots

•    ec2:AssociateAddress

•    ec2:ModifySnapshotAttribute

•    ec2:DescribeInstanceTypeOfferings

•    ec2:DescribeAvailabilityZones

•    ec2:DescribeVpcs

•    ec2:DescribeInstanceTypes

•    ec2:DescribeSubnets

•    iam:PassRole

•    elasticloadbalancing:DescribeLoadBalancers

•    elasticloadbalancing:RegisterInstancesWithLoadBalancer