Adding an Amazon Hypervisor for Automatic Scaling
You must create an Amazon hypervisor to direct operations for scaling out Amazon access nodes.
In environments with multiple Amazon accounts, you must associate this hypervisor with the Amazon IAM Admin User account. Then, for each Amazon tenant account, you must create an additional Amazon hypervisor that will use the account resources configured in this hypervisor. You must configure both the hypervisor, which is associated with the Amazon IAM Admin account, and the additional Amazon tenant hypervisors to authenticate using an IAM role.
Before You Begin
- If you’re using an on-premises access node (MediaAgent), then in the AWS console, you must configure an IAM user with the AmazonEC2RoleforSSM policy attached and the restricted backup-restore JSON file attached.
You can find the policy in the AWS console at arn:aws:iam::aws:policy/service-role/AmazonEC2RoleforSSM. To download the JSON file from your browser, see amazon_restricted_role_permissions.json.
- Verify that the Command Center contains either a server that represents an EC2 access node or an on-premises VSA access node. You will select this access node as part of creating the hypervisor.
For more information, see Getting Started.
- From the navigation pane, go to Protect > Virtualization.
The Virtual machines page appears.
- On the Hypervisors tab, click Add hypervisor.
- From the Select vendor list, select Amazon.
- In Client name, type a descriptive name for the hypervisor.
- Optional: Specify a region for the access nodes you are adding to the hypervisor. From the Regions list, select a region.
- Under Authentication, configure the appropriate authentication method for the type of access node you will select:
- If you will use an EC2 access node for this hypervisor, select IAM role, and then enter the key values.
- If you will use an on-premises VSA access node for this hypervisor, select either IAM role or Access and secret key, and then enter the key values.
Note: If you select IAM role for the Amazon client, but a proxy that is not associated with the IAM role is used for a backup or restore, the operation fails.
- From the Access nodes list, select either the EC2 access node or the on-premises VSA access node.
- Click Save.
What to Do Next
- For environments with multiple Amazon accounts, add an additional hypervisor for each Amazon tenant account. For instructions, see Adding a Hypervisor for an Amazon Tenant Account.
- For all other environments, configure the hypervisor for automatic scaling. For instructions, see Configuring a Hypervisor for Automatic Scaling.
- For more information about Amazon IAM Admin User accounts, in the AWS documentation, see Creating Your First IAM Admin User and Group.
- For more information about the use of Amazon IAM Admin User accounts in the Commvault software, see Using Resources from an Admin Account.
Last modified: 9/11/2020 2:20:15 PM