> Software > Databases > Azure > Azure Table Storage

Configure an Azure Table storage instance

Configure a cloud instance for Azure Table storage to back up and restore your data.

Before you begin

  • For Azure Resource Manager, the cloud account represents an application, and there are two methods of deployment:

    • The traditional method with Azure Active Directory, for which you must set up the application and tenant. With this option, when you configure the cloud account, you must provide the following information:

      • Subscription ID

      • Tenant ID

      • Application ID and secret value

      To complete this type of deployment, refer to Configuring Access to Azure Resources.

    • Managed Identity authentication with Azure Active Directory. This is a more secure method of deployment. Using this method ensures that your Azure subscription is accessed only from authorized Managed Identity-enabled virtual machines. In addition, the process of adding an Azure cloud account is easier, because you need only the Subscription ID, but not the Tenant ID, Application ID, or Application secret.

      To complete this type of deployment, refer to Configuring Access to Azure Resources Using a Managed Identity.

  • Verify that the access node machines have the contributor role assigned for the resource group to which the Cosmos account belongs. For restricted access, assign a custom role created using the AzureDBBackupRole file. To access all Cosmos accounts under the subscription, assign the role at the subscription level.

  • Ensure that the Allow storage account key access setting is enabled for all storage accounts from which tables will be backed up. To verify this, go to the storage account, then navigate to Settings > Configuration, and confirm that Allow storage account key access is set to Enabled.

  • If you are an MSP and want your tenant administrators to create the Azure Table storage instances using the Commvault infrastructure, see MSP configuration for Azure.

  1. From the Command Center navigation pane, go to Service catalog.

Choose Azure Table storage

  1. On the Databases tile, click Configure.

  2. Select Database running in the cloud (PaaS).

  3. Select Microsoft Azure, and then click Next.

  4. Select Table storage.

  5. Click Next.

Choose configuration method

  1. Select one of the following options:

  2. Click Next.

    Create the Azure app using express or custom configuration and follow the next steps to continue with the instance configuration.

Configure permissions and choose access node

  1. Select Use hosted infrastructure.

  2. Select one of the following application based authentications:

    • Use an existing application

      1. From the Credential list, select an existing credential or add a new one.

      2. To assign roles, do the following:

        1. Move the Assign required roles to the selected application toggle key to the right.

        2. Click Open Azure Cloud Shell.

        3. In Subscription ID, enter your Azure subscription ID.

        4. At the Azure Cloud Shell command prompt, paste and run the commands to assign required roles to the selected application.

    • Deploy a new application

      1. In the Application name box, enter a name for the Azure application.

      2. In the Subscription ID box, enter your Azure subscription ID.

      3. Under Deploy the application in the selected subscription and get the application details, copy the commands, and then paste them into a text editor.

      4. In the text editor, do the following:

        1. To use a custom role, for --role "Contributor", replace Contributor with the name of your custom role.

          The Storage Blob Data Contributor role is required. Do not remove this role from the commands unless you are certain that your custom role includes Storage Blob Data Contributor.

          For more information about custom roles, see Role and Permission Requirements for Protecting Azure Resources.

        2. Copy the commands.

      5. Click Open Azure Cloud Shell.

      6. At the Azure Cloud Shell command prompt, paste the commands.

        The commands run to create the Azure application, and then the Tenant ID, Application ID, and Application secret for the application are displayed.

      7. In the Commvault configuration wizard, add a new credential.

  3. Click Next.

  4. From the Region list, select a region. Infrastructure from the same region is used as the access node to connect to Azure resources for backup.

  5. Click Next.

  1. Select Use your access nodes for backups.

  2. Select how you want to authenticate the Azure app.

    • Application: Select one of the following:

      • Use an existing application

        1. From the Credential list, select an existing credential or add a new one.

        2. To assign roles, do the following:

          1. Move the Assign required roles to the selected application toggle key to the right.

          2. Click Open Azure Cloud Shell.

          3. In Subscription ID, enter your Azure subscription ID.

          4. At the Azure Cloud Shell command prompt, paste and run the commands to assign required roles to the selected application.

      • Deploy a new application

        1. In the Application name box, enter a name for the Azure application.

          The commands are updated with the value that you enter.

        2. In the Subscription ID box, enter your Azure subscription ID.

          The commands are updated with the value that you enter.

        3. Under Deploy the application in the selected subscription and get the application details, copy the commands, and then paste them into a text editor.

        4. In the text editor, do the following:

          1. To use a custom role, for --role "Contributor", replace Contributor with the name of your custom role.

            The Storage Blob Data Contributor role is required. Do not remove this role from the commands unless you are certain that your custom role includes Storage Blob Data Contributor.

            For more information about custom roles, see Role and Permission Requirements for Protecting Azure Resources.

          2. Copy the commands.

        5. Click Open Azure Cloud Shell.

          Azure Cloud Shell appears.

        6. At the Azure Cloud Shell command prompt, paste the commands.

          The commands run to create the Azure application, and then the Tenant ID, Application ID, and Application secret for the application are displayed.

        7. In the Commvault configuration wizard, add a new credential.

    • Managed identity

      1. In the Subscription ID box, enter the subscription ID for the Azure account.

  3. Click Next.

  4. From the Access nodes list, select an access node to connect to the Azure resources.

    For information on how to configure an access node, see Add an Access Node for Azure Table Storage.

  5. Click Next.

Plan creation

  1. Select an existing backup plan or create a new backup plan to associate with the instance.

    If a region for hosted infrastructure is selected, only backup plans associated with that region are displayed.

    Steps to create a backup plan

    1. Click the add button add/plus button - gray - no border.

      The Create backup plan dialog box appears.

    2. For Plan name, enter a descriptive name for the backup plan.

    3. For Storage, select or add the storage pool where you want to store backups.

    4. To configure backups, select Configure backups.

    5. Under Frequency, specify the frequency of the backup.

    6. Under Retention period, specify the duration for which the backup must be retained.

    7. To specify the additional retention, such as weekly full backups, select Add extended retention and then add rules.

    8. To add an additional storage copy, select Add second copy.

    9. From the Storage list, select or add the storage to use for the backups.

    10. Under Backups to copy, select the backup type.

    11. Under Retention period, enter the amount of time to retain the backups.

      To specify additional retention period, such as weekly full backups, select Add extended retention and then add rules.

    12. To add a third optional storage copy for maximum redundancy, select Add third copy, and then configure the storage, backup type, and retention settings.

    13. Click Save.

Choose cloud account

  1. From the Cloud account list, select an existing Azure account or add a new account.

    Steps to add new cloud account

    1. Beside the Cloud account list, click +.

      The Add cloud account dialog box appears.

    2. In the Name box, type the name for the account.

    3. Enter the subscription information:

      • For the traditional authentication method of deployment, enter the following information:

        • Subscription ID: Enter the subscription ID for the Azure account.

        • Credential: If you have already configured the credentials entity, select them from the list. To define a new credential, click + beside the list. For more information, see Adding credential.

      • For the managed identity authentication method of deployment, configure the following settings:

        • Connect using managed identities for Azure resources: Move the toggle key to the right.

        • Subscription ID: Enter the subscription ID for the Azure account.

    4. Click Save.

Configure instance details

  1. In the Instance box, enter a name for the instance.

  2. In the Table group box, enter a name for the table group, and then click Next.

Choose backup content

By default, all the tables in all the storage accounts will be selected for backup.

  1. To filter specific content to be backed up, click Edit, and then do any of the following:

    • To back up specific tables, click Add tables, and then do the following:

      1. Select or clear the tables as required, and then click Save.

    • To select content based on rules, click Add rule, and then do the following:

      1. For Match rule, select all or any.

        • Use all to create a backup rule group where all the defined conditions must be satisfied for filtering the backup content. Here, the AND logic is used.

        • Use any of you want to create a backup rule group where only a few of the defined conditions need to be satisfied for filtering the backup content. Here, the OR logic is used.

      2. From the Rule type list, select Resource group, Storage account, Tag name, or Tag value.

      3. From the Equals list, select an operator from the list.

      4. In Click browse or enter a value, browse or enter a custom path:

        • To browse for content, click Browse, select the content, and then click Save.

        • To enter a custom value, in Click browse or enter a value, enter the value.

          For example, you can enter tag_name, tag_value, resource_group_name, or storage_account_name.

      5. To create another rule, click Add Rule, and then set the new rule.

      6. Click Save.

      7. To review the content discovered by a rule, click Preview.

  2. In the Azure Table storage content dialog box, click Save.

  3. Click Next to create the instance.

Submit

  1. Review your selections, and then click Submit to complete the configuration.
×

Loading...