Learn how to protect and restore a Cloud SQL instance to a backup vault.
In this quickstart, you perform the following tasks:
- Configure a scheduled backup for a Cloud SQL instance.
- Back up a Cloud SQL instance into a backup vault.
- Restore a Cloud SQL instance from a backup.
Before you begin
Enable the Backup and DR Service API in your Google Cloud project.
Create a backup vault. Backup vaults provide protection for backups by storing them in secure, isolated, and specialized storage. For more information about backup vaults, see Backup vault for immutable and indelible backups.
Grant a role to the backup vault service agent
Every backup vault created has a unique service agent linked to it. For Cloud SQL instances, the service agent performs actions on behalf of the Backup and DR Service, so it needs appropriate permissions on the projects it needs to access.
Use the following instructions to grant a role to the service agent.
In the Google Cloud console, go to the Backup vaults page.
Click the backup vault name and copy the service agent's email address.
In the Google Cloud console, go to the IAM page.
In the New principles field, enter the service agent's email address.
From the Select a role list, select the BackupDR Cloud SQL Operator (
roles/backupdr.cloudSqlOperator) role.Click Add another role.
From the Select a role list, select the Service Account User (
roles/iam.serviceAccountUser) role.Click Save.
Back up a Cloud SQL instance into a backup vault
In the Google Cloud console, you can back up Cloud SQL instances to a backup vault by applying backup plans. You can back up in either of these two ways: Scheduled backups and On-demand backups.
Configure a scheduled backup
Use the following instructions to configure a scheduled backup for Cloud SQL instances.
In the Google Cloud console, go to the Vaulted backups page.
Click Schedule backup.
From the Resource Type list, select Cloud SQL.
From the Project list, select the project where the Cloud SQL instance is located.
From the Region list, select the region where your instances are located.
From the Resources list, click Browse. Choose the Cloud SQL instance that you want to back up and click Done.
Click Continue.
From the Backup plan list, click Select.
Choose a backup plan that you want to protect the Cloud SQL instance with.
Click Done.
Review the backup details and click Schedule.
As the backup window is set to six hours, you can take an on-demand backup of the Cloud SQL instance.
Take an on-demand backup
Initiate an on-demand backup for a Cloud SQL instance with a backup plan by triggering the backup rule to run immediately.
Use the following instructions to create an on-demand backup.
In the Google Cloud console, go to the Vaulted backups page.
The Vaulted backups page lists only the data resources that have backup plans applied and their backups stored in a backup vault within that project.
Select the resource to back up. Either from the menu, or from the details page for the resource, select Create on-demand backup.
In the Create an on-demand backup window, select a backup rule to use and click Create.
To view the status of the on-demand backup job, click Notifications.
In the Google Cloud console, go to the Jobs page to view the backup operation status.
Restore a Cloud SQL instance from a backup
You can restore a Cloud SQL instance to the same project or to a different project.
Use the following instructions to restore a Cloud SQL instance into a backup vault from a backup.
In the Google Cloud console, go to the Vaulted backups page.
The Vaulted backups page lists only the instances that have backup plans applied and their backups stored in a backup vault within a project.
Select the backup that you want to restore. Either from the backup details page for the backup, or from the menu, select Restore.
The Restore page displays where you select the following restore options:
- The Resource type is prefilled with
Cloud SQL. - In Resource name, select the Cloud SQL instance to restore.
- When you click Backup, a pane opens showing all available backups. Select the specific backup to restore.
- For Choose the restore destination, select the project into which you want to restore the Cloud SQL instance.
- Click Continue.
The next page shows the restore details so far, and prompts you to Choose restore destination, with these options:
- Restore to a new instance: This creates a new instance based on the configuration stored in your backup. You can customise the instance after the restore is complete. Provide a new Instance ID using lowercase letters, numbers, and hyphens. Start with a letter.
- Overwrite an existing instance: Select an existing instance to overwrite from the list of available instances.
- Overwrite the source instance: This will overwrite your current instance. All the current data on the selected instance will be overwritten, including previous point-in-time recovery logs. The overwritten data cannot be recovered later. This is not recommended for production use.
- The Resource type is prefilled with
In the Google Cloud console, go to the Jobs page to view the restore operation status.
Clean up
To avoid incurring charges to your Google Cloud account, remember to delete the resources used on this page if you have no further use for them.
Use the following instructions to remove the backup plan from the backed up Cloud SQL instance.
In the Google Cloud console, go to the Vaulted resources page.
Select the backed up instance.
Click Remove backup plan.
Use the following instructions to delete the backup plan. Deleting the backup plan is an optional step.
In the Google Cloud console, go to the Backup plans page.
Select the backup plan and click Delete.
This deletes the backup plan and related contents.
Use the following instructions to delete the backup vault. Deleting the backup vault is an optional step.
In the Google Cloud console, go to the Backup vaults page.
Click the backup vault and click Delete.
This deletes the backup vault and related contents.