> Essential > Storage > Cloud Storage

Enabling WORM Storage and Retention for Cloud Storage

You can enable WORM storage and retention for cloud storage.

Before You Begin

Create or configure the following in cloud storage:

Vendor

Before You Begin Tasks

Amazon S3
  • Create a bucket in Amazon S3 cloud storage, with object lock enabled.

Note

Disable default retention when object lock is enabled.

  • Verify that the PutObjectRetention permission is assigned to the bucket along with the other permissions needed to configure Amazon S3. For more information about the other permissions, see the Amazon S3 pages.

  • Commvault uses Compliance mode with object lock on AWS S3.

  • For a bucket with versioning enabled, you must have the DeleteObjectVersion permission to delete versioned objects.

S3 Compatible
  • Same tasks as Amazon S3
  • Commvault uses Compliance mode with object lock on S3 Compatible.
  • Disable default retention when object lock is enabled or set retention days to 0.
  • Additionally, you should configure life cycle policy to remove delete markers.

Google Cloud Storage

Create a bucket in Google Cloud Storage.

Note

From Commvault Platform Release 2024 (11.34), Commvault supports object lock on Google Cloud Storage, but only for new storages.

Microsoft Azure Storage

  • Create a storage account and a container with version-level immutability support in Microsoft Azure Storage.

  • Verify that the Storage Blob Data Contributor role is assigned in Azure.

Procedure

  1. From the navigation pane, go to Storage > Cloud.

    The Cloud page appears.

  2. Click the cloud storage for which you want to configure WORM storage mode.

    The cloud storage page appears.

  3. On the Configuration tab, in the WORM section, do the following:

    • Enable WORM storage lock

      1. Move the WORM storage lock toggle key to the right.

        The Retention rules page appears.

      2. In the Retention period option, specify the amount of time (between the minimum and maximum retention set on the Data Domain Console) to retain the backups, and then click OK.

        The Do you want to enable WORM storage lock? dialog box appears.

      3. Select the options to confirm your agreement, type Confirm in the confirmation box, and then click CONFIRM.

        Note

        • Both WORM storage lock and Compliance lock will be enabled on all associated copies of the plans. This action is irreversible and you cannot lower the retention.

        • If you enabled WORM storage lock unintentionally, we recommend you to create a new storage pool with a new storage pointing to a new container or bucket.

    • Enable only Compliance lock

      1. Move the Compliance lock toggle key to the right.

        The Do you want to enable Compliance lock? dialog box appears.

      2. Select the option to confirm your agreement, and then click YES.

        Note

        • Compliance lock will be enabled on all associated copies of the plans. This action is irreversible and you cannot lower the retention.

        • If you want to enable WORM storage lock for a cloud storage on which Compliance lock is enabled, contact Commvault support and obtain the authorization code to disable Compliance lock and then enable WORM storage lock.

Loading...