Cleanroom Recovery Use Cases

Read through the following use cases to understand how you can achieve a value from the Cleanroom recovery solution.

Continuous Testing

Ensuring the swift recovery of mission-critical applications in the face of unforeseen disruptions requires robust testing. We propose a dynamic approach that transcends traditional, static plans.

First, you will need to establish recovery groups encompassing all critical applications. Grouping ensures synchronized restoration and efficient recovery. However, during testing, you might have to abandon rigid plans. Instead, you will inject chaos by randomly selecting servers from diverse groups for recovery. This simulates real-world scenarios where attackers might target any server, not just critical ones. This randomness prepares you for any eventuality and strengthens resilience.

For information about configuring your environment, see Preparing Your Environment for Cleanroom Recovery.

Testing itself can be dynamic. If a set of new servers require recovery, you can create new recovery groups on the fly after the test has commenced. However, these new servers must be protected by Air Gap Protect before inclusion, ensuring their security and integrity.

Remember, specific implementation details will vary based on your unique system configuration. By adopting this proactive approach, you can stay confident of mission-critical applications that are ready to face any challenge and recover swiftly.

Forensic Investigation and Analysis

Cleanroom Recovery provides a controlled environment for forensic analysts to investigate the attack timeline, identify the attack's origin, and gather evidence for potential legal proceedings.

After vulnerabilities are identified, the cleanroom can be used to develop, test, and deploy security patches in a safe and controlled environment before applying them to production systems.

To set up your environment for this use case, perform the following steps:

  1. Recover Commvault Control Plane

  2. Configure a new Azure hypervisor

  3. Create a Cleanroom recovery target

  4. Create a recovery group

  5. Recover a recovery group or an entity

After the environment is recovered, forensic analysts can perform their work and take appropriate actions.

Cyber Attack

Even if some data is compromised on production systems, a cleanroom can be used to extract clean versions of critical data from uninfected backup sources.

When the integrity of production is in question, a cleanroom allows for a safe and secure place to begin recovery while the production environment is being remediated.

In completely compromised environments, a cleanroom allows a safe target to recover into and begin running the business from. If a new production environment is desired, clients can move workloads out of the cleanroom when ready.

  1. Recover Commvault Control Plane

  2. Configure a new Azure hypervisor

  3. Create a Cleanroom recovery target

  4. Create a recovery group

  5. Recover a recovery group or an entity

If you want to transition the recovered VMs into production, please work with Commvault professional services and your local service providers.

Loading...