Enabling Ransomware Protection for a HyperScale MediaAgent

You can enable ransomware protection for a HyperScale MediaAgent. You must enable protection for all the nodes in a HyperScale environment.

Note

You cannot enable ransomware protection for a HyperScale MediaAgent that hosts CommServe.

Before You Begin

  • Review the system requirements and the considerations for ransomware protection.

  • If any disk libraries or mount paths that are mounted are already present on the MediaAgent, you must take a backup of the /etc/fstab system file.

  • You must set the MediaAgent on maintenance mode because the operations in the procedure require a reboot and perform unmount and mount of the disk libraries.

  • If the MediaAgent is a client computer, make sure that there are no active backup or restore operations running on the MediaAgent.

Procedure

  1. Login to your MediaAgent.

  2. To stop Commvault services, run the following command:

    commvault stop
  3. Go to the /opt/commvault/MediaAgent64 directory.

  4. To enable the ransomware protection, run the following command:

    ./cvsecurity.py enable_protection -i InstanceID

    where instanceID is the ID of the instance. For example, Instance001.

    Note

    If any disk libraries or mount paths that are mounted are already present on the MediaAgent, then you need not run the protect_disk_library command. The enable_protection command performs the operations that are done by the protect_disk_library command such as updating the context in the /etc/fstab file and performing unmount and mount of the disk library.

  5. Reboot the MediaAgent for the ransomware protection to take effect.

    The reboot operation is required only when you enable the protection for the first time.

    Repeat the above steps on all the nodes in the HyperScale environment.

  6. Turn off the maintenance mode on all the nodes.

Result

Ransomware will be enabled in the MediaAgent and can be viewed as follows:

  1. From the navigation pane, go to Manage > Infrastructure.

    The Infrastructure page appears.

  2. Click the MediaAgent tile.

    The MediaAgents page appears.

  3. Click the MediaAgent in which you enabled ransomware

    In the Control section, the Ransomware Protection toggle key will be enabled. (The toggle key will appear grayed out.)

Additional Information

  • The software logs the activities of the ransomware protection in the /var/log/cvsecurity.log file.

  • The software logs any unauthorized activities in the /var/log/audit/audit.log file.

Loading...