Restoring a DynamoDB table from a backup (original) (raw)

While a restore is in progress, don't modify or delete your IAM role policy; otherwise, unexpected behavior can result. For example, suppose that you removed write permissions for a table while that table is being restored. In this case, the underlying RestoreTableFromBackup operation would not be able to write any of the restored data to the table.

After the restore operation is complete, you can modify or delete your IAM role policy.

IAM policies involving source IP restrictions for accessing the target restore table should have the aws:ViaAWSService key set to false to ensure that the restrictions apply only to requests made directly by a principal. Otherwise, the restore will be canceled.

If your backup is encrypted with an AWS managed key or a customer managed key, don't disable or delete the key while a restore is in progress, or the restore will fail.

After the restore operation is complete, you can change the encryption key for the restored table and disable or delete the old key.