1. Support
  2. Knowledge base
  3. 100050013

How to Install and Configure the Veritas Alta SaaS Protection Retrieval Service

Article: 100050013
Last Published: 2023-04-12
Ratings: 0 0
Product(s): Veritas Alta SaaS Protection

Description

 
The Veritas Alta SaaS Protection Retrieval Service can be downloaded from the Veritas Alta SaaS Protection Admin Portal, under ' Administration' and then ' Software Download'. 
 

 

Step 1 -- Run the Installer

NOTE: The account you are logged in as on the machine to which you are installing the Retrieval Service will need to be a local machine administrator.
 
Open the Retrieval Service installer file ' Veritas.NSP.RetrievalService.msi' with ' Run as administrator'. This will open the install wizard on the welcome step.
 
 
Click ' Next' to proceed.

Step 2 -- Acceptable Use Policy

You will need to read and accept the Veritas Alta SaaS Protection Acceptable Use Policy (AUP) before proceeding. Of special note, you have rights to use Veritas Alta SaaS Protection installable software in your organization as long as your subscription to Veritas Alta SaaS Protection is active. You can also find the AUP here: Veritas Alta SaaS Protection Acceptable Use Policy (AUP).
 
 
Click ' Next' to proceed.

Step 3 -- Service Account Credentials

Enter the credentials for the service account you have created for the Veritas Alta SaaS Protection Retrieval Service. This service account needs local machine administrator rights on the target file servers where it is installed.
Click the ' Validate' button to confirm the credentials pass and click OK. 
 
 
 
 
Click ' Next' to proceed.

Step 4 -- Install Path

Optionally change the install path.
 
 
Click ' Next' to proceed.

Step 5 -- Execute the Installation

Click ' Install' to execute the installation.
 
 
The install execution performs an automatic start of the Windows service.
 
 
When installation is complete, click ' Finish'.

Step 6 -- Launch the Veritas Alta SaaS Protection Retrieval Service GUI

Go to the Start menu, find the Veritas Alta SaaS Protection Retrieval Service app, and open it.
 
 
 

Step 7 -- Configure the Retrieval Service

Establish the Connection

 

When launching the Retrieval Service app for the first time, it will default to the ' Settings' tab with 'General' and 'Advanced' settings sub-tabs.
 
On the ' General' tab, enter StorSite Web Service URL for the Veritas Alta SaaS Protection tenant along with the credentials of the service account that is configured in Veritas Alta SaaS Protection for the Retrieval Service. This account will need to be authorized in Veritas Alta SaaS Protection with the following rights:

 

  • API authorization
  • Access all items

 

By default, a Retrieval Service account is created when a new tenant is provisioned.  The account credentials can be obtained by contacting Veritas support.  Or, for instructions on how to configure authorization on an account that will be used by the Retrieval Service, see How to configure authorization for the retrieval account
 
With the URL and credentials, click the ' Apply' button at the bottom right of the app window. This will save your changes and establish your connection.
 
 

Caching

Configure the local cache to optimize subsequent retrievals of the fetched items. If an item is retrieved from a seamless stub, the first time it will be downloaded from the cloud, but the next time - provided it remains in the cache - it will be fetched from the local cache instead of incurring another cloud download.
 
There are two settings to configure caching:
  1. Cache Duration -- This is the number of days items will be kept in the Cache Location. Minimum duration is one day.
  2. Max. Cache Size (GB) -- This sets a storage capacity threshold on the local cache. Veritas Alta SaaS Protection uses a first in, first out (FIFO) queuing approach when the cache is at capacity, meaning it will remove the oldest files first.  Minimum size is one GB.
  3. Cache Location -- This is the path on the local server where cached items will be stored. It is recommended to change this location to a non-system drive when possible.  
The Retrieval Service will run daily checks to keep the cache location updated. It will first prune files based on the number of days set and then based on size to keep within the parameters configured.  
 
The ' Run Cleanup Now' button will only remove data that meets the same two criteria and not remove everything from cache.  
 
 

Process Exclusions (Optional)

Configure 'Process Exclusions' to avoid applications/processes from invoking unwanted retrievals from Veritas Alta SaaS Protection.
 
To add a process exclusion, click the ' Add Exclusion' button. This will display a window whereby you can identify the application/process to be excluded, either by executable or directory.
 
 

User Exclusions (Optional)

To support excluding network scan processes from causing unwanted retrieval of stubs, User Exclusions can be used. 

This will work nearly identically to the process exclusion, except by pattern matching against the user domain/id rather than a folder path. There are a few examples presented in the dialog when adding the exclusion.

Note: This should not be considered a security setting. The kernel mode driver may still serve the file depending on the internally cached state of the file within the kernel (if another user is currently using the file, for example). The retrieval service always relies on ACL configuration for security.

 

Advanced Settings

Under the 'Advanced' sub tab you will find the following settings:

  • # Threads -- This determines how many folders will be processed in parallel by the Retrieval Service when executing export jobs.
  • Log Directory -- This is the output path where you will find the event logs for the Retrieval Service.
  • The # Async Threads parameter is only for the “Retrieve Entire  Folder on First Stub Access” feature. This controls how many files are requested in parallel.

Pre-ingest Encryption Settings

If you are using the pre-ingest encryption option in the Veritas Alta SaaS Protection Connector Service along with seamless or link-based stubbing, the Retrieval Service will need to be configured with the encryption key to automatically decrypt any encrypted files when they are retrieved.  

The Connector ID is required when configuring this option and can be found on the properties of the connector.  

If you are planning to use link-based stubs, you will need to enable the checkbox 'Act as Link-based Stub Retrieval Server' and configure the 'Stub Share' path. For more information on link-based stubbing, see Overview of Veritas Alta SaaS Protection Link-based Stubbing.

 

Was this content helpful?

Article Languages