Before performing a backup and restore in the Dell Telecom Infrastructure Automation Suite (Automation Suite), consider the following:
- The
dtias_config.yaml
file that is supplied in the Dell Telecom Infrastructure Automation Suite bundle stores the Amazon Web Services (AWS) credentials such as the access key, secret key, and ca cert string. To protect these credentials, after installation, you can remove the credentials from the fields and save thedtias_config.yaml
file. - Administrators must create and set the credentials policy. The credentials policy enables the Administrator to restrict or allow certain actions between Automation Suite and S3. The credentials policy must be set in AWS S3. To enable Automation Suite to perform a backup and restore function, we recommend allowing the following actions:
Table 35. Actions to be enabled Action System Resource Description DescribeVolumes ec2 All Allows Automation Suite to describe volumes. DescribeSnapshots ec2 All Allows Automation Suite to describe snapshots. CreateTags ec2 All Allows Automation Suite to create tags. CreateVolume ec2 All Allows Automation Suite to create volumes. CreateSnapshot ec2 All Allows Automation Suite to create snapshots. DeleteSnapshot ec2 All Allows Automation Suite to delete snapshots. GetObject S3 Bucket/ Allows Automation Suite to get all objects within the bucket. DeleteObject S3 Bucket/ Allows Automation Suite to delete objects within the bucket. PutObject S3 Bucket/ Allows Automation Suite to put objects in the bucket. AbortMultipartUpload S3 Bucket/ Allows Automation Suite to perform multipart uploads in the bucket. ListMultipartUploadParts S3 Bucket/ Allows Automation Suite to list multipart upload parts in the bucket. ListBucket S3 Bucket Allows Automation Suite to list the bucket. - If the connectivity end-user license agreement (EULA) is not accepted prior to taking a backup, the telemetry and connectivity usability stays the same after a restore.