1

我创建了备份计划并使用云形成(不是 CLI)配置了 SNS,但备份作业已运行并成功完成,但未收到电子邮件通知(已订阅 SNS 主题)。

cloudformation 中的备份库部分:

BackupVaultWithDailyBackupssns:
    Type: "AWS::Backup::BackupVault"
    Properties:
      BackupVaultName: "Vault_name"
      Notifications:      
          BackupVaultEvents:
            - BACKUP_JOB_STARTED
            - BACKUP_JOB_COMPLETED
            - BACKUP_JOB_SUCCESSFUL
            - BACKUP_JOB_FAILED
          SNSTopicArn:
            !Sub 'arn:aws:sns:${AWS::Region}:${AWS::AccountId}:My_topic'

社交网络政策: 

{
  "Version": "2008-10-17",
  "Id": "__default_policy_ID",
  "Statement": [
    {
      "Sid": "__default_statement_ID",
      "Effect": "Allow",
      "Principal": {
        "AWS": "*"
      },
      "Action": [
        "SNS:GetTopicAttributes",
        "SNS:SetTopicAttributes",
        "SNS:AddPermission",
        "SNS:RemovePermission",
        "SNS:DeleteTopic",
        "SNS:Subscribe",
        "SNS:ListSubscriptionsByTopic",
        "SNS:Publish",
        "SNS:Receive"
      ],
      "Resource": "arn:aws:sns:us-east-1:111111111111:My_topic",
      "Condition": {
        "StringEquals": {
          "AWS:SourceOwner": "111111111"
        }
      }
    },
    {
      "Sid": "My-statement-id",
      "Effect": "Allow",
      "Principal": {
        "Service": "backup.amazonaws.com"
      },
      "Action": "SNS:Publish",
      "Resource": "arn:aws:sns:us-east-1:111111111111:My_topic"
    }
  ]
}

4

1 回答 1

0

对于在这里寻找答案的人,我是如何设置我的,这适用于所有失败的通知。

设置引用主题的保管库

  BackupVault:
    Type: "AWS::Backup::BackupVault"
    Properties:
      BackupVaultName: Backup Vault Name
      Notifications:
        BackupVaultEvents:
          - "BACKUP_JOB_EXPIRED"
          - "BACKUP_JOB_FAILED"
        SNSTopicArn: !Ref FailedBackupTopic
    DependsOn:
      - FailedBackupTopic

设置主题、主题策略和主题订阅

  FailedBackupTopic:
    Type: AWS::SNS::Topic
    Properties:
      DisplayName: "AWS Backup - Failed backup notification"

  FailedBackupTopicPolicy:
    Type: 'AWS::SNS::TopicPolicy'
    Properties:
      PolicyDocument:
        Id: SNSPolicyV1
        Version: '2012-10-17'
        Statement:
          - Sid: Sid1
            Effect: Allow
            Principal:
              Service:
                - 'backup.amazonaws.com'
            Action: 'sns:Publish'
            Resource: !Ref FailedBackupTopic
      Topics:
        - !Ref FailedBackupTopic

  FailedBackupTopicSubscription:
    Type: 'AWS::SNS::Subscription'
    Properties:
      Endpoint: "email@email.com"
      Protocol: email
      TopicArn: !Ref FailedBackupTopic
于 2021-08-17T01:23:04.553 回答