Cohesity Alta SaaS Protection 2.x.x Administrator's Guide
- Introduction to Cohesity Alta SaaS Protection
- API permissions
- Administrator portal (Web UI)
- Manage users and roles
- What is a connector?
- What is a connector?
- Supported SaaS workloads and backup capabilities
- Workflow to protect data using Cohesity Alta SaaS Protection
- Know your subscription details
- About transient errors
- Overview of adding connectors
- Configure General settings
- Configure Capture scope
- Configure User filter
- Configure Group filter
- Configure Folder filter
- Configure credentials
- Configure Custom backup policy and guidelines
- Configure Delete policy for SharePoint Online and guidelines
- Configure Stubbing policy
- Guidelines to configure Stubbing policy for SharePoint Online
- Schedule a backup
- Configure email addresses to get notifications
- Review configuration and edit/save/initiate backup
- Connectors page
- Connector status
- Edit connector configuration
- Delete connectors
- Pre-requisites for Microsoft 365 connectors
- Protect Microsoft 365 Multi-Geo tenant
- Protect Exchange Online data
- Protect SharePoint sites and data
- Add SharePoint connectors
- Supported and unsupported SharePoint Settings and Types for backup and restore
- Supported Sites and List templates for backup and restore
- Supported SharePoint permission objects for backup and restore
- Configuring capture scope for SharePoint connectors
- End-user SharePoint data access in Cohesity Alta SaaS Protection
- Run the Delete and Stubbing policies to the SharePoint Online environment
- Limitations of SharePoint connector
- Protect Teams sites
- Protect OneDrive data
- Protect Teams chats
- Protect GoogleDrive data
- Protect Gmail data
- Protect Audit logs
- Protect Salesforce data and metada
- Protect Entra ID objects
- Protect Box data
- Protect Slack data
- Protect Email/Message data
- Configure Retention policies
- Perform backups
- View and share backed-up data
- Analytics
- About analytics
- Gain insights into storage utilization
- Gain insights into storage utilization for Entra ID and Salesforce connectors
- Gain insights into blocked activities, most active users, and more
- Gain insights into data volume (size and item count) on legal hold
- Gain insights into data volume (size and item count) saved in different Enhanced cases
- Gain insights into data volume (size and count) under different policies
- Gain insights into data volume (size and item count) under different Tags
- Gain insights into data volume (size and item count) under different Tags behaviors
- Gain insights into storage savings after deduplication and compression
- Gain insights into data ingestion trends
- Perform restores using Administration portal
- About restore
- Prerequisites for restore
- Restore Exchange Online mailboxes
- Restore SharePoint/OneDrive/Teams Sites and data
- Restore Teams chat messages and Teams channel conversations
- Restore O365 audit logs
- Restore Box data
- Restore Google Drive data
- Restore Gmail data
- About Salesforce Data, Metadata, and CRM Content restore and Sandbox seeding
- Guidelines for Schema changes in Salesforce organization to prevent restore failures
- Restore Standard and Custom objects (Structured data restore)
- Custom Object restore - post processing steps
- Restore specific Records (Structured data) using Query filters
- Restore Salesforce CRM Content (Unstructured data restore)
- Restore Salesforce files/documents in Public/Shared libraries (Unstructured data restore)
- Limitations of Salesforce Data restore
- Salesforce Objects not supported for restore
- Key considerations for Salesforce Metadata restore
- Restore Salesforce Metadata
- Limitations of Salesforce Metadata backup and restore
- About Entra ID (Azure AD) objects and records restore
- Restore Slack data
- Restore data to File server
- Set default restore point
- Configure Restore all, Restore all versions, Point-in-time, and Specific range restore options
- Configure email addresses for notifications
- Downloading an item
- Restore dashboard
- Install services and utilities
- About services and utilities
- Pre-requisites to download and install services and utilities
- Downloading services and utilities
- Where to install the services and utilities
- Installing or upgrading services and utilities
- Configuring service accounts for services and utilities
- About the Apps Consent Grant Utility
- Discovery
- Configure Tagging polices
- Configure Tiering policy
- Auditing
- Manage Stors (Storages)
Configure capture scope for Exchange connectors
You can configure the capture scope to back up mailboxes in your Exchange Online environment. Depending on your backup requirements, you can:
Note:
To know more about the maximum number of users data that can be backed up, contact Cohesity Support. You can also go to the page to view your subscription details.
You can use one of the following procedures as per your backup requirement:
Back up mailboxes of all users.
Use Rolling mailbox scope to distribute backup load.
Use Alphabetical mailbox scope to select specific mailboxes.
Back up specific user mailboxes.
Back up mailboxes from specific domains.
Back up all or specific Group/Teams mailboxes.
Back up Public folders.
- From the Exchange settings section, click User mailboxes and then click All mailboxes.
- Configure folder filter to limit the backup scope to specific folders in the mailboxes of users:
- (Optional) Do the following:
Select the Recoverable items check box to back up items in the Recoverable Items folder.
Select the Archive mailboxes check box to back up items in the Archive folder.
- Click Next to configure credentials.
: With the 2.32.1 release, this option will not be available for new connectors. For existing connectors, this option will appear as read only.
If you have a large number of mailboxes in your Exchange Online environment, the backup scope can become extensive. You can configure the capture scope using the option to manage this scenario. By selecting this option, you can map a specific number of mailboxes to be included in the backup. It helps minimize the load on any one connector. You can configure multiple connectors to cover all the mailboxes in your environment.
Note:
To know more about the maximum number of mailboxes that can be backed up, contact Cohesity Support. You can also go to the page to view your subscription details.
- From the Exchange settings section, click User mailboxes and then click All mailboxes.
- Click the Rolling mailbox scope option and do the following:
Enter the number of mailboxes that you want to map to this connector in the No. of mailboxes in scope field.
Only the specified number of mailboxes can be backed up using this connector.
- (Optional) Configure filters to limit the backup scope to specific users based on their Entra ID attributes.
- (Optional) Configure folder filter to limit the backup scope to specific folders in the mailboxes of users.
- (Optional) Do the following:
Select the Recoverable items check box to back up the Recoverable Items folder.
Select the Archive mailboxes check box to back up the archived mailboxes.
- Click Next to configure credentials.
: With the 2.32.1 release, this option will not be available for new connectors. For existing connectors, this option will appear as read only.
If you have a large number of mailboxes in your Exchange Online environment, the backup scope can become extensive. To manage this scenario, configure the capture scope using the option. You can map a range of mailboxes to be included in the backup. It helps minimize the load on any one connector. To cover all the mailboxes in your environment, you can configure multiple connectors.
Note:
To know more about the maximum number of mailboxes that can be backed up, contact Cohesity Support. You can also go to the page to view your subscription details.
- From the Exchange settings section, click User mailboxes and then click All mailboxes.
- Click the Alphabetical mailbox scope option and do the following:
Enter the range of email addresses that you want to back up using this connector.
For example, if you specify the start letter as 'A' and the end letter as 'F', all email addresses within the range of 'A' to 'F' are included in the backup scope.
The mailboxes are processed based on the first letter of the email address.
If you are using the Alphabetic mailbox scope, you may need to enable the Include mailbox not starting with the letter option for one of the connectors. It backs up the mailboxes of the users whose email addresses do not begin with an alphabet.
- (Optional) Configure filters to limit the backup scope to specific users based on their Entra ID attributes.
- (Optional) Configure folder filters to limit the backup scope to specific folders in the mailboxes of users.
- (Optional) Do the following:
Select the Recoverable items check box to back up items in the Recoverable Items folder.
Select the Archive mailboxes check box to back up items in the Archive folder.
- Click Next to configure credentials.
You can use the following procedure to limit the capture scope to specific domains only.
Note:
To know more about the maximum number of users data that can be backed up, contact Cohesity Support. You can also go to the page to view your subscription details.
- From the Exchange settings section, click User mailboxes and then click Specific mailboxes.
- Do the following:
Click + Add SMTP addresses.
On the Add SMTP Addresses page, enter the email addresses of the users, groups, or Teams that are to be backed up using this connector.
Use semicolons between addresses.
Click Add.
- (Optional) Configure the folder filters to limit the backup scope to specific folders in the mailboxes of users.
- (Optional) Do the following:
Select the Recoverable items check box to back up items in the Recoverable Items folder.
Select the Archive mailboxes check box to back up items in the Archive folder.
- Click Next to configure credentials.
You can use the following procedure to limit the capture scope to specific domains only.
Note:
To know more about the maximum number of users data that can be backed up, contact Cohesity Support. You can also go to the page to view your subscription details.
- From the Exchange settings section, click All mailboxes.
- Select the Limit backup to specific domains check box > enter domain SMTP addresses in the Domain names section.
- Do the following:
Click + Add SMTP addresses.
On the Add SMTP Addresses page, enter domain names.
Use semicolons between addresses.
Click Add.
- (Optional) Configure folder filters to limit the backup scope to specific folders the mailboxes of users.
- (Optional) Do the following:
Select the Recoverable items check box to back up items in the Recoverable Items folder.
Select the Archive mailboxes check box to back up items in the Archive folder.
- Click Next to configure credentials.
To enable Dynamic group mailbox backup using PowerShell as the management API, provide an impersonation account representing a member or owner of the respective group. Adding an impersonation account is mandatory for Modern/OAuth authentication. In this case, the provided users are added as members or owners (in the case of Dynamic groups) to all groups and Teams that are in backup scope.
- From the Exchange settings section, click Group/Teams mailboxes and then click All mailboxes.
- (Optional) Configure the folder filter to limit the backup scope to specific folders in the mailboxes of users.
- (Optional) Do the following:
Select the Recoverable items check box to back up items in the Recoverable Items folder.
Select the Archive mailboxes check box to back up items in the Archive folder.
- Click Next to configure credentials.
- Click + Add impersonations.
- On the EWS OAuth Impersonation User SMTP addresses page, enter impersonation accounts, click Add.
Use semicolons between email addresses.
The added account is displayed page.
- Click Next to configure credentials.
- From the Exchange settings section, click Group/Teams mailboxes and then click Specific mailboxes.
- Do the following:
Click + Add SMTP addresses.
On the Add SMTP Addresses page, enter the email addresses of the users, groups, or Teams that are to be backed up using this connector.
Use a semicolon between addresses.
Click Add.
- (Optional) Configure the user filter to limit the backup scope to specific users based on their Entra ID attribute.
- (Optional) Configure the folder filter to limit the backup scope to specific folders in the mailboxes of users.
- (Optional) Do the following:
Select the Recoverable items check box to back up the Recoverable Items folder.
Select the Archive mailboxes check box to back up the archived mailboxes.
- Click Next to configure credentials.
- Click + Add impersonations.
- On the EWS OAuth Impersonation User SMTP addresses page, enter impersonation accounts, click Add.
Use semicolons between email addresses.
The added account is displayed page.
- Click Next to configure credentials.
You can use the following procedure to back up Public folders in your Exchange Online environment.
- From the Exchange settings section, click Public Folders.
- (Optional) Configure folder filter to limit the backup scope to specific folders.
- Click Next to configure credentials.
- Click + Add impersonations.
- On the EWS OAuth Impersonation User SMTP addresses page, enter impersonation accounts, click Add.
Use semicolons between email addresses.
The added account is displayed page.
- Configure the credentials.
- Click Next.