How can I share an encrypted Amazon RDS DB snapshot with another account?
3 min read
6 months ago
Published on Apr 24, 2024
This response is partially generated with the help of AI. It may contain inaccuracies.
Table of Contents
Title: How to Share an Encrypted Amazon RDS Snapshot with Another AWS Account
Step 1: Log in to AWS Management Console
- Open your web browser and navigate to the AWS Management Console.
- Sign in to your AWS account.
Step 2: Access Amazon RDS Console
- In the AWS Management Console, navigate to the Amazon RDS console in the respective region you are working in.
Step 3: Choose the Database Instance
- From the navigation pane, select the database instance that you want to share the snapshot of.
Step 4: Select the Snapshot to Share
- Choose the maintenance and backups tab and select the snapshot that you want to share.
Step 5: Create a Customer Managed Key (If Needed)
- If you do not already have a customer managed key, create one by selecting the Customer Managed Keys tab on the left.
- Choose to create a key, give it an alias and description, and follow the prompts to create the key.
- Assign privileges to the key for IAM users or roles.
Step 6: Specify Target AWS Account
- Scroll to the bottom of the page and under Other AWS Accounts, specify the target AWS account information.
- Add the account number of the target AWS account and save the changes.
Step 7: Copy the Snapshot
- Choose the snapshot that uses the default AWS managed KMS key.
- Select actions and then choose copy snapshot.
- Choose the customer managed key you created or an existing one to copy the snapshot.
Step 8: Share the Copied Snapshot
- Go to the manual tab on the snapshot page to view the copied snapshot.
- Select the copied snapshot you want to share with another AWS account.
- Choose share snapshot from the actions menu.
- Enter the target AWS account ID that you want to permit to restore a DB instance.
- Save the changes.
Step 9: Access Target AWS Account
- Log in to the target AWS account.
- Open the Amazon RDS console in the correct region.
Step 10: Copy the Shared Snapshot
- Choose the snapshot shared from the source account.
- Select actions and then choose copy snapshot to copy the snapshot into the same AWS region with the KMS key from the target account.
Step 11: Launch the New Instance
- Monitor the progress of the copied snapshot in the manual tab.
- Once the snapshot copy is completed, you can launch a new instance from the copied snapshot.
Step 12: Complete the Process
- Ensure that the KMS keys are active and exist for both sharing and copying the snapshot.
- Congratulations! You have successfully shared an encrypted Amazon RDS snapshot with another AWS account.
Thank you for following this step-by-step tutorial on sharing an encrypted Amazon RDS snapshot with another AWS account. Happy cloud computing!