More Info:

This rule ensures that the last backup recovery point for Storage Gateway volumes is created within the specified duration.

Risk Level

High

Address

Configuration

Compliance Standards

CBP,SEBI

Triage and Remediation

Remediation

To remediate the misconfiguration of not having Recovery Points created for Storage Gateway in AWS using the AWS Management Console, follow these steps:

  1. Login to AWS Console: Go to the AWS Management Console (https://aws.amazon.com/console/) and log in to your AWS account.

  2. Navigate to RDS Service: Click on the ‘Services’ dropdown menu at the top left corner of the console, then select ‘RDS’ under the ‘Database’ section.

  3. Select the RDS Instance: In the RDS dashboard, select the RDS instance for which you want to enable Recovery Points by clicking on the checkbox next to the instance name.

  4. Enable Automated Backups: Click on the ‘Modify’ button at the top of the dashboard to modify the settings of the selected RDS instance.

  5. Configure Backup Settings: Scroll down to the ‘Backup’ section of the Modify DB Instance page. Here, you will find the ‘Backup retention period’ setting. Set the desired number of days for which you want to retain automated backups. This will ensure that recovery points are created and retained for the specified period.

  6. Enable Automated Backups: Make sure that the ‘Backup retention period’ is set to a value greater than 0 to enable automated backups for the RDS instance.

  7. Save Changes: Scroll down to the bottom of the page and click on the ‘Continue’ button, review the changes, and then click on the ‘Modify DB Instance’ button to save the changes.

  8. Verify Configuration: Once the modification is completed, go back to the RDS dashboard and check the ‘Backup’ section of the RDS instance to ensure that automated backups are enabled and the backup retention period is set as per your configuration.

By following these steps, you have successfully enabled the creation of Recovery Points for the RDS instance in AWS, ensuring that automated backups are taken at regular intervals as per the specified retention period.

.