NetBackup™ Snapshot Manager Install and Upgrade Guide

Last Published:
Product(s): NetBackup & Alta Data Protection (10.3)
  1. Introduction
    1.  
      About the deployment approach
    2.  
      Deciding where to run NetBackup Snapshot Manager
    3.  
      About deploying NetBackup Snapshot Manager in the cloud
  2. Section I. NetBackup Snapshot Manager installation and configuration
    1. Preparing for NetBackup Snapshot Manager installation
      1.  
        Meeting system requirements
      2.  
        NetBackup Snapshot Manager host sizing recommendations
      3.  
        NetBackup Snapshot Manager extension sizing recommendations
      4.  
        Creating an instance or preparing the host to install NetBackup Snapshot Manager
      5.  
        Installing container platform (Docker, Podman)
      6.  
        Creating and mounting a volume to store NetBackup Snapshot Manager data
      7.  
        Verifying that specific ports are open on the instance or physical host
      8.  
        Preparing NetBackup Snapshot Manager for backup from snapshot jobs
    2. Deploying NetBackup Snapshot Manager using container images
      1.  
        Before you begin installing NetBackup Snapshot Manager
      2. Installing NetBackup Snapshot Manager in the Docker/Podman environment
        1.  
          (Optional) Policies for podman based deployments
      3.  
        Securing the connection to NetBackup Snapshot Manager
      4.  
        Verifying that NetBackup Snapshot Manager is installed successfully
      5.  
        Restarting NetBackup Snapshot Manager
    3. Deploying NetBackup Snapshot Manager extensions
      1.  
        Before you begin installing NetBackup Snapshot Manager extensions
      2.  
        Downloading the NetBackup Snapshot Manager extension
      3. Installing the NetBackup Snapshot Manager extension on a VM
        1.  
          Prerequisites to install the extension on VM
        2.  
          Installing the extension on a VM
      4. Installing the NetBackup Snapshot Manager extension on a managed Kubernetes cluster (AKS) in Azure
        1.  
          Prerequisites to install the extension on a managed Kubernetes cluster in Azure
        2.  
          Installing the extension on Azure (AKS)
      5. Installing the NetBackup Snapshot Manager extension on a managed Kubernetes cluster (EKS) in AWS
        1.  
          Prerequisites to install the extension on a managed Kubernetes cluster in AWS
        2. Installing the extension on AWS (EKS)
          1.  
            Install extension using the extension script
      6. Installing the NetBackup Snapshot Manager extension on a managed Kubernetes cluster (GKE) in GCP
        1.  
          Prerequisites to install the extension on a managed Kubernetes cluster in GCP
        2.  
          Installing the extension on GCP (GKE)
      7.  
        Install extension using the Kustomize and CR YAMLs
      8.  
        Managing the extensions
    4. NetBackup Snapshot Manager cloud providers
      1.  
        Why to configure the NetBackup Snapshot Manager cloud providers?
      2. AWS plug-in configuration notes
        1.  
          Prerequisites for configuring the AWS plug-in
        2.  
          Prerequisites for application consistent snapshots using AWS Systems Service Manager
        3.  
          Configuring AWS permissions for NetBackup Snapshot Manager
        4.  
          AWS permissions required by NetBackup Snapshot Manager
        5.  
          Before you create a cross account configuration
      3. Google Cloud Platform plug-in configuration notes
        1.  
          Google Cloud Platform permissions required by NetBackup Snapshot Manager
        2.  
          Configuring a GCP service account for NetBackup Snapshot Manager
        3.  
          Preparing the GCP service account for plug-in configuration
        4.  
          GCP cross-project restore configuration
      4. Microsoft Azure plug-in configuration notes
        1.  
          Configuring permissions on Microsoft Azure
        2.  
          About Azure snapshots
      5. Microsoft Azure Stack Hub plug-in configuration notes
        1.  
          Configuring permissions on Microsoft Azure Stack Hub
        2.  
          Configuring staging location for Azure Stack Hub VMs to restore from backup
    5. Configuration for protecting assets on cloud hosts/VM
      1.  
        Deciding which feature (on-host agent or agentless) of NetBackup Snapshot Manager is to be used for protecting the assets
      2. Protecting assets with NetBackup Snapshot Manager's on-host agent feature
        1. Installing and configuring NetBackup Snapshot Manager agent
          1.  
            Downloading and installing the NetBackup Snapshot Manager agent
          2. Linux/SUSE Linux-based agent
            1.  
              Preparing to install the Linux/SUSE Linux-based agent
            2.  
              Registering the Linux/SUSE Linux-based agent
          3. Windows-based agent
            1.  
              Preparing to install the Windows-based agent
            2.  
              Registering the Windows-based agent
        2. Configuring the NetBackup Snapshot Manager application plug-in
          1.  
            Configuring an application plug-in
          2. Microsoft SQL plug-in
            1.  
              Microsoft SQL plug-in configuration requirements
            2.  
              Restore requirements and limitations for Microsoft SQL Server
            3.  
              Steps required before restoring SQL AG databases
            4.  
              Additional steps required after restoring SQL AG databases
            5. Additional steps required after a SQL Server instance snapshot restore
              1.  
                Steps required after a SQL Server host-level restore
              2.  
                Steps required after a SQL Server instance disk-level snapshot restore to new location
          3. Oracle plug-in
            1. Oracle plug-in configuration requirements
              1.  
                Optimizing your Oracle database data and metadata files
            2.  
              Restore requirements and limitations for Oracle
            3.  
              Additional steps required after an Oracle snapshot restore
      3. Protecting assets with NetBackup Snapshot Manager's agentless feature
        1. Prerequisites for the agentless configuration
          1.  
            Configuring SMB for Windows (Optional)
          2.  
            Configuring WMI security for Windows (optional)
        2.  
          Configuring the agentless feature
        3.  
          Configuring the agentless feature after upgrading NetBackup Snapshot Manager
    6. Snapshot Manager catalog backup and recovery
      1.  
        About using script
      2.  
        NetBackup Snapshot Manager data backup
      3.  
        NetBackup Snapshot Manager data recovery
    7. NetBackup Snapshot Manager assets protection
      1. NetBackup protection plan
        1.  
          Creating a NetBackup protection plan for cloud assets
        2.  
          Subscribing cloud assets to a NetBackup protection plan
      2.  
        Assigning tags on snapshots and Restore Point Collection
      3.  
        Configuring VSS to store shadow copies on the originating drive
      4.  
        Additional steps required after restoring an AWS RDS database instance
    8. Volume Encryption in NetBackup Snapshot Manager
      1.  
        About volume encryption support in NetBackup Snapshot Manager
      2.  
        Volume encryption for Azure
      3.  
        Volume encryption for GCP
      4.  
        Volume encryption for AWS
    9. NetBackup Snapshot Manager security
      1.  
        Configuring security for Azure Stack
      2.  
        Configuring the cloud connector for Azure Stack
      3.  
        CA configuration for Azure Stack
  3. Section II. NetBackup Snapshot Manager maintenance
    1. NetBackup Snapshot Manager logging
      1.  
        About NetBackup Snapshot Manager logging mechanism
      2. How Fluentd-based NetBackup Snapshot Manager logging works
        1.  
          About the NetBackup Snapshot Manager fluentd configuration file
        2.  
          Modifying the fluentd configuration file
      3.  
        NetBackup Snapshot Manager logs
      4.  
        Troubleshooting NetBackup Snapshot Manager logging
    2. Upgrading NetBackup Snapshot Manager
      1.  
        About NetBackup Snapshot Manager upgrades
      2.  
        Supported upgrade path
      3.  
        Upgrade scenarios
      4.  
        Preparing to upgrade NetBackup Snapshot Manager
      5.  
        Upgrading NetBackup Snapshot Manager
      6.  
        Upgrading NetBackup Snapshot Manager using patch or hotfix
      7.  
        Applying operating system patches on NetBackup Snapshot Manager host
      8. Migrating and upgrading NetBackup Snapshot Manager
        1.  
          Before you begin migrating NetBackup Snapshot Manager
        2.  
          Migrate and upgrade NetBackup Snapshot Manager on RHEL 8.8
      9.  
        GCP configuration for migration from zone to region
      10. Post-upgrade tasks
        1.  
          Upgrading NetBackup Snapshot Manager extensions
      11.  
        Post-migration tasks
    3. Uninstalling NetBackup Snapshot Manager
      1.  
        Preparing to uninstall NetBackup Snapshot Manager
      2.  
        Backing up NetBackup Snapshot Manager
      3.  
        Unconfiguring NetBackup Snapshot Manager plug-ins
      4.  
        Unconfiguring NetBackup Snapshot Manager agents
      5.  
        Removing the NetBackup Snapshot Manager agents
      6.  
        Removing NetBackup Snapshot Manager from a standalone Docker host environment
      7.  
        Removing NetBackup Snapshot Manager extensions - VM-based or managed Kubernetes cluster-based
      8.  
        Restoring NetBackup Snapshot Manager
    4. Troubleshooting NetBackup Snapshot Manager
      1.  
        Troubleshooting NetBackup Snapshot Manager
      2.  
        SQL snapshot or restore and granular restore operations fail if the Windows instance loses connectivity with the NetBackup Snapshot Manager host
      3.  
        Disk-level snapshot restore fails if the original disk is detached from the instance
      4.  
        Discovery is not working even after assigning system managed identity to the control node pool
      5.  
        Performance issue with GCP backup from snapshot
      6.  
        Post migration on host agents fail with an error message
      7.  
        File restore job fails with an error message
      8.  
        Acknowledgment not received for datamover
      9.  
        Upgrade of extension on AWS (EKS) fails when upgrading through script
      10.  
        Backup and restore jobs fail with timeout error
      11.  
        GCP restore with encryption key failed with an error message
      12.  
        Amazon Redshift databases not available after discovery
      13.  
        Shared VPC subnet not visible
      14.  
        Failure of encryption key listing during VM restore
      15.  
        Container manager may not spawn the ephemeral registration container timely
      16.  
        GCP restore from VM fails to obtain firewall rules
      17.  
        Parameterised VM restore fails to retrieve encryption keys

Google Cloud Platform permissions required by NetBackup Snapshot Manager

Assign the following permissions to the service account that NetBackup Snapshot Manager uses to access assets in the Google Cloud Platform (GCP):

Note:

In the following table the permissions marked with an asterisk (*) are mandatory.

Table: NetBackup Snapshot Manager feature Vs permissions for GCP cloud provider

Feature

Task/Operation

Required permission

VM based

VM protection

Backup, Restore, Indexing + GRT *

To fetch the specified disk type

compute.diskTypes.get

To create a persistent disk in the specified project

compute.disks.create

To delete the specified persistent disk

compute.disks.delete

Used when attaching a disk to an instance

compute.disks.use

To attach an existing disk resource to an instance

compute.instances.attachDisk

Detach a disk from an instance

compute.instances.detachDisk

Snapshot/ (Cross-Project/Region)Restore *

To create a snapshot in the specified project

compute.snapshots.create

To delete the specified snapshot resource

compute.snapshots.delete

Restore/Backup/Snapshot/Indexing + GRT *

To set the labels on a disk

compute.disks.setLabels

To return the specified snapshot resource

compute.snapshots.get

To retrieve the specified zone-specific operations resource

compute.zoneOperations.get

Snapshot, (Cross-Project/Cross-Region) Restore *

To create a snapshot of a specified persistent disk

compute.disks.createSnapshot

Snapshot/Backup/Restore *

To retrieve the specified operations resource

compute.globalOperations.get

Core, Restore *

Return the specified subnetwork

compute.subnetworks.get

Cross-Project restore, BFS *

To create disk from a snapshot in same of different project

compute.snapshots.useReadOnly

Discovery of shared VPC *

To return the specified project resource

compute.projects.get

Snapshot *

To set the labels on a snapshot

compute.snapshots.setLabels

Plugin configuration *

To retrieve the project identified by the specified name

resourcemanager.projects.get

To return the specified region resource

compute.regions.get

Calculate CP capability,  Restore *

To return the specified machine type

compute.machineTypes.get

To retrieve a list of machine types available to the specified project

compute.machineTypes.list

Discovery *

To fetch the specified persistent disk 

compute.disks.get

To retrieve a list of persistent disks contained within the specified zone 

compute.disks.list

To fetch the specified instance resource

compute.instances.get

To retrieve the list of instances contained within the specified zone

compute.instances.list

To list Google Compute Engine snapshots

compute.snapshots.list

To retrieve a list of subnetworks available to the specified project

compute.subnetworks.list

Restore *

To create an instance resource in the specified project

compute.instances.create

To delete the specified instance resource

compute.instances.delete

To set metadata for the specified instance

compute.instances.setMetadata

To set the service account on the instance

compute.instances.setServiceAccount

To set labels on an instance

compute.instances.setLabels

To set network tags for the specified instance

compute.instances.setTags

To start an compute engine instance

compute.instances.start

To stop a running instance,  shutting it down cleanly

compute.instances.stop

To return the specified network

compute.networks.get

To retrieve the list of networks available to the specified project

compute.networks.list

To create a resource using a subnet

compute.subnetworks.use

To create a resource using an external IP

compute.subnetworks.useExternalIp

To attach service accounts to resources

iam.serviceAccounts.actAs

To fetch the effective firewall on a given network

compute.networks.getEffectiveFirewalls

To return the specified firewall

compute.firewalls.get

Restore of CMK encrypted disks

Restore

To get metadata for a given CryptoKey and its primary CryptoKeyVersion

cloudkms.cryptoKeys.get

To get metadata for a given CryptoKeyVersion

cloudkms.cryptoKeyVersions.get

To list CryptoKeys

cloudkms.cryptoKeys.list

To list KeyRings

cloudkms.keyRings.list

To decrypt data while reading encrypted disks

cloudkms.cryptoKeyVersions.useToDecrypt

To encrypt data on restored disks

cloudkms.cryptoKeyVersions.useToEncrypt

To get information about a location

cloudkms.locations.get

To list information about the supported locations for this service

cloudkms.locations.list

Cross-Project restore

To encrypt/decrypt data in other project

Cloud KMS CryptoKey Encrypter/Decrypter

SQL database protection

List cloud SQL instances in a given project

cloudsql.instances.list

To get the list of databases

cloudsql.databases.list

To get the database details

cloudsql.databases.get

To export data from database for backup

cloudsql.instances.export

To get the details of instance

cloudsql.instances.get

To import the backed up files into database

cloudsql.instances.import

To get the list of instances

cloudsql.instances.list

To create bucket

storage.buckets.create

To get bucket 

storage.buckets.get

To get permissions on buckets for required service account

storage.buckets.getIamPolicy

To set permissions on buckets for required service account

storage.buckets.setIamPolicy

To save backup files to bucket

storage.objects.create

To cleanup backup files from bucket

storage.objects.delete

To get backup file details from bucket

storage.objects.get

To get list of files from bucket

storage.objects.list

Kuberenetes cluster based

Kubernetes extension /Auto-scaling

To get information of the cluster

container.clusters.get

To get details Get details about the managed instance group

compute.instanceGroupManagers.get

Kubernetes extension /Auto-scaling

To update managed instance group

compute.instanceGroupManagers.update

Kubernetes extension /Auto-scaling

To update node pool of the cluster

container.clusters.update

To manage the operations done on GKE cluster

container.operations.get