Working with audit reports - AWS Backup

Working with audit reports

AWS Backup Audit Manager reports are automatically generated evidence of your AWS Backup activity, such as:

  • Which backup jobs finished and when

  • Which resources you backed up

There are two types of reports. One type is a jobs report, which shows finished backup jobs and when they finished. The second type of report is a compliance report. Compliance reports can monitor resource levels or the different controls that are in effect. When you create a report, you choose which type of report to create.

AWS Backup Audit Manager delivers a daily report in to your Amazon S3 bucket. If the report is for the current region and current account, you can choose to receive the report in either CSV or JSON format. Otherwise, the report is available in CSV format. The timing of the daily report might fluctuate over several hours because AWS Backup Audit Manager performs randomization to maintain its performance. You can also run an on-demand report anytime.

All account holders can create cross-Region reports; management account holders can also create cross-account reports.

You can have a maximum of 20 report plans per AWS account.

NOTE: Delegated Administrator accounts are unable to access AWS Backup Audit Manager report generation. Contact your account’s administrator to generate or edit reports.

Note

Resources such as RDS that do not have the capability to show incremental bytes of data of a specific backup will display the value backupSizeInBytes as 0.

To allow AWS Backup Audit Manager to create daily or on-demand reports, you must first create a report plan from a report template.