EFS Restore backup access denied

Question 1

When trying to restore File system from AWS Backup I’m getting the following error:

Access Denied
Insufficient privileges to perform this action. Please consult with the account administrator for necessary permissions.

1

2

3

Access Denied

Insufficient privileges to perform this action. Please consult with the account administrator for necessary permissions.

This is weird since I have AdministratorAccess under my AWS user:

The file system created by running the CLI command:

aws efs create-file-system

1 2	aws efs create-file-system

In addition, I followed EKSWorkshop to create the EFS.

Any help will be much appreciated.

Question 2

If you change the policy on the backup vault screen you can start the restore.

It’s deny by default.

For example, it works:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "AWS": "*"
            },
            "Action": [
                "backup:DeleteBackupVault",
                "backup:DeleteBackupVaultAccessPolicy",
                "backup:DeleteRecoveryPoint",
                "backup:StartCopyJob",
                "backup:StartRestoreJob",
                "backup:UpdateRecoveryPointLifecycle"
            ],
            "Resource": "*"
        }
    ]
}

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

{

"Version": "2012-10-17",

"Statement": [

{

"Effect": "Allow",

"Principal": {

"AWS": "*"

},

"Action": [

"backup:DeleteBackupVault",

"backup:DeleteBackupVaultAccessPolicy",

"backup:DeleteRecoveryPoint",

"backup:StartCopyJob",

"backup:StartRestoreJob",

"backup:UpdateRecoveryPointLifecycle"

],

"Resource": "*"

}

]

}

EFS Restore backup access denied

Question:

Answer:

Leave a Reply Cancel reply