Troubleshooting stopped cross-Region automated backups - Amazon Relational Database Service
Account suspensionOpt-in Region changesAmazon KMS key issuesMonitoring backup replication status
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Troubleshooting stopped cross-Region automated backups

Amazon RDS automatically stops cross-Region automated backup replication under specific circumstances to protect your data and maintain compliance with Amazon operational requirements.

Account suspension

If your Amazon account is suspended, Amazon RDS automatically stops cross-Region automated backup replication for all DB instances in that account. The replicated backups that already exist in the destination Amazon Web Services Region are kept up to your specified retention period.

After your account suspension is resolved, you must manually re-enable cross-Region automated backup replication to resume replicating backups to the destination Amazon Web Services Region.

Opt-in Region changes

Cross-Region automated backup replication stops automatically when you opt out of either the source Amazon Web Services Region (where the primary DB instance is located) or the destination Amazon Web Services Region (where backups are being replicated). For more information about opt-in Regions, see Managing Amazon Regions.

The replicated backups that already exist in the destination Amazon Web Services Region are kept up to your specified retention period. To resume replication, opt back into the required Amazon Web Services Region and manually re-enable cross-Region automated backup replication.

Amazon KMS key issues

For encrypted DB instances, Amazon RDS requires access to Amazon KMS keys in both the source and destination Amazon Web Services Region to replicate backups. If you disable or delete the Amazon KMS key in either Amazon Web Services Region, cross-Region automated backup replication stops automatically. The replicated backups that already exist in the destination Amazon Web Services Region are kept up to your specified retention period.

To resume cross-Region automated backup replication:

  1. Re-enable the disabled Amazon KMS key, or create a new Amazon KMS key if the original was deleted

  2. If using a new Amazon KMS key, delete existing replicated backup in the destination Amazon Web Services Region that was encrypted with the previous key.

  3. Re-enable cross-Region automated backup replication for the instance

For more information about managing Amazon KMS keys, see Amazon Key Management Service documentation.

Note

You cannot restore from previously replicated backups in the destination Amazon Web Services Region unless the previous Amazon KMS key is re-enabled. The backups remain encrypted and inaccessible without a valid Amazon KMS key.

Monitoring backup replication status

You can monitor the status of your cross-Region automated backups using the Amazon RDS console, Amazon CLI, or RDS API. For more information, see Finding information about replicated backups for Amazon RDS.