NetBackup™ Web UI Cloud Administrator's Guide

Last Published:
Product(s): NetBackup (10.2)
  1. Managing and protecting cloud assets
    1.  
      About protecting cloud assets
    2.  
      Limitations and considerations
    3. Configure Snapshot Manager's in NetBackup
      1.  
        Configure a third-party CA certificate
      2.  
        Add a Snapshot Manager
      3. Add a cloud provider for a Snapshot Manager
        1.  
          IAM Role for AWS Configuration
      4.  
        Associate media servers with a Snapshot Manager
      5.  
        Discover assets on Snapshot Manager
      6.  
        Edit a Snapshot Manager
      7.  
        Enable or disable a Snapshot Manager
      8.  
        (Optional) Add the Snapshot Manager extension
    4. Managing intelligent cloud groups
      1.  
        Create an intelligent cloud group
      2.  
        Delete an intelligent cloud group
    5. Protecting cloud assets or intelligent cloud groups
      1.  
        Customize or edit protection for cloud assets or intelligent groups
      2.  
        Remove protection from cloud assets or intelligent groups
    6.  
      Cloud asset cleanup
    7.  
      Cloud asset filtering
    8.  
      AWS and Azure government cloud support
    9. About protecting Microsoft Azure resources using resource groups
      1.  
        Before you begin
      2.  
        Limitations and considerations
      3. About resource group configurations and outcome
        1.  
          Examples of resource group configurations
      4.  
        Troubleshoot resource group permissions
    10. About the NetBackup Accelerator for cloud workloads
      1.  
        How the NetBackup Accelerator works with virtual machines
      2.  
        Accelerator forced rescan for virtual machines (schedule attribute)
      3.  
        Accelerator backups and the NetBackup catalog
      4.  
        Accelerator messages in the backup job details log
    11.  
      Configuring backup schedule for cloud workloads
    12.  
      Backup options for cloud workloads
    13.  
      Snapshot replication
    14.  
      Configure AWS snapshot replication
    15.  
      Using AWS snapshot replication
    16.  
      Support matrix for account replication
    17.  
      Protect applications in-cloud with application consistent snapshots
    18. Protecting PaaS assets
      1.  
        Prerequisites for protecting PaaS assets
      2. Installing the native client utilities
        1.  
          Installing the MySQL client utility
        2.  
          Installing sqlpackage client utility
        3.  
          Installing Postgres client utility
      3.  
        Configuring the storage server for instant access
      4.  
        About incremental backup for PaaS workloads
      5.  
        Limitations and considerations
      6.  
        Discovering PaaS assets
      7.  
        Viewing PaaS assets
      8.  
        Managing PaaS credentials
      9.  
        View the credential name that is applied to a database
      10. Add credentials to a database
        1.  
          Creating an IAM database username
        2.  
          Creating a system or user managed identity username
      11.  
        Add protection to PaaS assets
      12.  
        Perform backup now
  2. Recovering cloud assets
    1.  
      Recovering cloud assets
    2.  
      Perform rollback recovery of cloud assets
    3. Recovering PaaS assets
      1.  
        Recovering non-RDS PaaS assets
      2.  
        Recovering RDS-based PaaS asset
      3.  
        Recovering Azure protected assets
      4.  
        Recovering duplicate images from AdvancedDisk
  3. Performing granular restore
    1.  
      About granular restore
    2.  
      Supported environment list
    3.  
      List of supported file systems
    4.  
      Before you begin
    5.  
      Limitations and considerations
    6.  
      Restoring files and folders from cloud virtual machines
    7.  
      Restoring volumes on cloud virtual machines
    8.  
      Troubleshooting
  4. Troubleshooting protection and recovery of cloud assets
    1.  
      Troubleshoot cloud workload protection issues
    2.  
      Troubleshoot PaaS workload protection and recovery issues

IAM Role for AWS Configuration

If the Snapshot Manager is deployed in cloud, AWS configuration can be configured to use IAM role for authentication.

See Add a cloud provider for a Snapshot Manager.

Before proceeding, ensure the following:

  • IAM role is configured within AWS. See the NetBackup Snapshot Manager Install and Upgrade Guide for details.

  • After you upgrade NetBackup and Snapshot Manager to the latest version, you need to update the credentials. Run the following command:

    tpconfig -update -snapshot_manager <snapshot manager host> -snapshot_manager_user_id <snapshot manager user ID> -manage_workload <workload type> -security_token <security token>

Note:

Post upgrade, credentials are updated to support only IAM role.

The following implementations of IAM role are supported:

  • Source account: In this case, the cloud assets that need to be protected are in the same AWS account as Snapshot Manager. Thus, AWS cloud is aware of the AWS account ID and role name, you need to only select the region.

  • Cross account: In this case, the cloud assets that need to be protected are in a different AWS account than Snapshot Manager. Thus, you need to enter the target account and the target role name details along with the region so that Snapshot Manager can access those assets.

    You need to establish a trust relationship between the source and the target account. For example, if this is the role ARN for the role you want to use to configure the plugin:

    arn:aws:iam::935923755:role/TEST_IAM_ROLE

    So, to configure the plugin, provide the last part of the ARN, the name:TEST_IAM_ROLE

    For more details, refer to the Access AWS Accounts Using IAM Roles related information in the Amazon Web Services documentation.