Resource Type definition for AWS::Backup::BackupVault
Create a backup vault:
resource "awscc_backup_backup_vault" "example" {
backup_vault_name = "example_backup_vault"
}
Create a backup vault with a KMS key:
resource "awscc_backup_backup_vault" "example" {
backup_vault_name = "example_backup_vault_kms"
encryption_key_arn = awscc_kms_key.example.arn
}
resource "awscc_kms_key" "example" {
description = "KMS Key for root"
key_policy = jsonencode({
"Version" : "2012-10-17",
"Id" : "KMS-Key-Policy-For-Root",
"Statement" : [
{
"Sid" : "Enable IAM User Permissions",
"Effect" : "Allow",
"Principal" : {
"AWS" : "arn:aws:iam::111122223333:root"
},
"Action" : "kms:*",
"Resource" : "*"
},
],
}
)
}
resource "awscc_kms_alias" "example" {
alias_name = "alias/backup-kms-example"
target_key_id = awscc_kms_key.example.key_id
}
backup_vault_name
(String)access_policy
(String)backup_vault_tags
(Map of String)encryption_key_arn
(String)lock_configuration
(Attributes) (see below for nested schema)notifications
(Attributes) (see below for nested schema)backup_vault_arn
(String)id
(String) Uniquely identifies the resource.lock_configuration
Required:
min_retention_days
(Number)Optional:
changeable_for_days
(Number)max_retention_days
(Number)notifications
Required:
backup_vault_events
(List of String)sns_topic_arn
(String)Import is supported using the following syntax:
$ terraform import awscc_backup_backup_vault.example <resource ID>