Drata

Drata inspected company's database snapshot history and determined a successful snapshot is available for the previous day.

This test requires an additional permission: <code>backup:ListRecoveryPointsByResource</code>.

- To add this permission to the DrataAutoPilot role to avoid permission errors.
 1. Navigate to the DrataAutopilotRole in IAM Console.
 2. Add an inline policy to the role.
 - In the policy editor, choose JSON to add permissions manually and paste the following JSON for the permission (backup:ListRecoveryPointsByResource) needed for this test:
 { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "backup:ListRecoveryPointsByResource" ], "Resource": "*" } ] }
 3. Give this inline policy a name and add it to the DrataAutoPilot role.

- This test requires an additional permission: <code>backup:ListRecoveryPointsByResource</code>.
 - To add this permission to the DrataAutoPilot role to avoid permission errors.
 1. Navigate to the DrataAutopilotRole in IAM Console.
 2. Add an inline policy to the role.
 - In the policy editor, choose JSON to add permissions manually and paste the following JSON for the permission (backup:ListRecoveryPointsByResource) needed for this test:
 { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "backup:ListRecoveryPointsByResource" ], "Resource": "*" } ] }
 3. Give this inline policy a name and add it to the DrataAutoPilot role.

This test is part of the Backup Monitoring control (DCF-99) that ensures automated notifications are sent to personnel in the event of a backup failure. Backup failures are investigated and resolved by engineering personnel following company policies and procedures.

If Drata did not identify a successful snapshot for the previous day for the following databases, the test will fail. To remediate a failed test, you will need to investigate the reason for the backup failure and manually restart the backup job if necessary.

Prerequisite

ASSOCIATED DRATA CONTROL

WHAT TO DO IF A TEST FAILS