A set of Windows PowerShell scripts to enable automated daily/weekly backups (via snapshots) on AWS EC2 Windows instances. I used these to setup a backup process on Windows Server 2012 R2.
First and foremost, credit for the original versions of these goes to Chris Hettinger from the following post:
AWS Disaster Recovery Automation w/ Powershell
However, the scripts presented in Chris' post use v1.0 of the AWS API, which is now deprecated. I dusted off the 'ol API documents & debugger to get them working with the current (as of July 2014) v2.0.
For the sake of completeness, I'm going to include the steps Chris outlined in his blog.
The first thing you will want to do is apply for access to SES and setup a verified sender address; this may take several hours.
Download the AWS SDK for .NET
After the SDK has been installed, pick a place to store the scripts (ex. C:\AWS). Next, copy the scripts into your AWS directory. Additionally, create a directory called “Logs” inside of your AWS directory.
Change the AWS .NET SDK Path:
(Note the latest version has the DLLs in the \Net35 and \Net45 subdirectories of \bin - I used the \Net45 version for my 2012 R2 setup)
# AWS SDK Path
Add-Type -Path "C:\Program Files (x86)\AWS SDK for .NET\bin\Net45\AWSSDK.dll"
Add your AWS Access Key, Secret, and Account ID:
(Account ID can be found under your AWS username dropdown -> Security Credentials -> Account Identifiers. Remove the dashes for the config file)
# Access Keys
$accessKeyID="XXXXXXXXXXXXXXXXXXXX"
$secretAccessKey="XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
$accountID = "############"
Uncomment both the region that your instances are running in and the region for your SES emails:
# EC2 Regions
# $serviceURL="https://ec2.us-east-1.amazonaws.com" # US East (Northern Virginia)
# $serviceURL="https://ec2.us-west-2.amazonaws.com" # US West (Oregon)
# $serviceURL="https://ec2.us-west-1.amazonaws.com" # US West (Northern California)
# $serviceURL="https://ec2.eu-east-1.amazonaws.com" # EU (Ireland)
# $serviceURL="https://ec2.ap-southeast-1.amazonaws.com" # Asia Pacific (Singapore)
# $serviceURL="https://ec2.ap-southeast-2.amazonaws.com" # Asia Pacific (Sydney)
# $serviceURL="https://ec2.ap-northeast-1.amazonaws.com" # Asia Pacific (Tokyo)
# $serviceURL="https://ec2.sa-east-1.amazonaws.com" # South America (Sao Paulo)
# SES Regions
# $sesURL="https://email.us-east-1.amazonaws.com" # US East (Northern Virginia)
# $sesURL="https://email.us-west-2.amazonaws.com" # US West (Oregon)
# $sesURL="https://email.eu-west-1.amazonaws.com" # EU (Ireland)
Enter your log path:
# Log
$LOG_PATH="C:\AWS\Logs\"
Provide a from address (must be verified in Amazon Simple Email Services (SES)) & an admin address that will receive emails:
# Email
$FROM_ADDRESS = "[email protected]"
$ADMIN_ADDRESSES = "[email protected]"
Edit the max number of days to keep old snapshots and the max allowable runtime of the script:
# Expiration
$EXPIRATION_DAYS = 7
$EXPIRATION_WEEKS = 4
$MAX_FUNCTION_RUNTIME = 60 # minutes
Execute the following line in PowerShell to allow the scripts to add entries into the event log:
New-EventLog -Source "AWS PowerShell Utilities" -LogName "Application"
Verify the paths to AWSConfig.ps1 and AWSUtilities.ps1 :
############## C O N F I G ##############
."C:\AWS\AWSConfig.ps1"
############## F U N C T I O N S ##############
."C:\AWS\AWSUtilities.ps1"
Edit the environment variables to define the Name (i.e. "Our Cloud Servers"), Type (i.e. "Staging", "Production", etc.), the Backup Type (i.e. "Daily") and, most importantly, the instance IDs of the servers to backup:
# Environment
$ENVIRONMENT_NAME = "Our Cloud Servers"
$ENVIRONMENT_TYPE = "Production"
$BACKUP_TYPE = "Daily"
$stagingInstanceIDs = "i-xxxxxxxx", "i-xxxxxxxx", "i-xxxxxxxx"
Running the script DailySnapshot.ps1 will create a snapshot of each volume for each instance (without shutting them down). Once it's complete, you'll receive an email via Amazon SES with the status of the backup and details of the process.
To automate the process, you can setup a recurring task in Task Scheduler. When doing so, make sure you execute the "powershell" command and not just the script:
I did this mostly to learn, so please excuse any bugs / awful code. And more imporantly, please help improve these scripts! Open an issue, fork, submit a pull request, etc. You know the drill. I'm game.
Released under the MIT License. See the bundled LICENSE file for details.