You can back up your Amazon EC2 instances directly to the cloud, without configuring or installing backup gateways, using the Commvault Cloud infrastructure.
Before You Begin
If you are an MSP and you want your tenant administrators to configure the Amazon EC2 instances using the Commvault Cloud infrastructure, see Managed Service Provider Configuration for Amazon.
Start the Configuration Wizard
-
From the Command Center navigation pane, go to Protect > Virtual machines.
The Overview page of Virtualization appears.
-
In the upper-right area of the page, click Add Hypervisors.
The Configure Hypervisor page appears.
-
Select Amazon Web Services.
-
Click Next.
The Configure permissions page of the Configure Amazon Web Services Account wizard appears.
Configure permissions
-
Select Use hosted infrastructure.
-
Click the Launch the CloudFormation Stack link to open the AWS account in the AWS console.
Note
If you do not have permission to create a role in the AWS account, copy the Launch CloudFormation Stack link and share it with your AWS IAM administrator.
-
Log on to the AWS console.
The Quick create stack page appears.
-
Under Capabilities, read the information about the template, and then select the acknowledgment check box.
-
Click Create stack.
Wait for the CloudFormation Stack to finish creating the CommvaultTenantRole IAM role.
The CloudFormation Stack creates the following policies, and then attaches the policies to CommvaultTenantRole:
-
CommvaultDynamoDBPolicy
-
CommvaultDocDBPolicy
-
CommvaultEC2Policy
-
CommvaultFSPolicy
-
CommvaultRDSPolicy
-
CommvaultRedshiftPolicy
-
CommvaultS3Policy
-
CommvaultVPCPolicy
-
-
After the stack is created, on the Outputs tab of the AWS console, copy the ExternalID and IAMRole key values.
-
Return to the Commvault Cloud configuration wizard.
-
For Configure credential, select existing credentials or create new credentials.
Important
The credentials must have an external ID and an IAM role ARN—the values that you copied from the Outputs tab of the AWS console in a preceding step:
-
If you select existing credentials, to verify that the credentials have an external ID and an IAM role ARN, click the edit button
. -
If you create new credentials, make sure to enter the external ID and the IAM role ARN.
Steps to add new credentials
-
Click + beside the Credential list.
The Add credential dialog box appears.
-
Enter the following information:
-
For Authentication Type, STS Assume Role with IAM policy is selected by default.
-
In the Credential name box, enter the descriptive name (such as AWSCommvaultTenantCreds) for the credential.
-
In the Role ARN box, enter the ARN of CommvaultTenantRole IAM role.
-
In the External ID box, add the External ID from the outputs tab of the Cloud Formation Stack.
-
In the Description box, enter a brief description for the credential.
-
-
Click Save.
-
-
Click Next.
The Access Nodes page of the configuration wizard appears.
Access Nodes
-
Select the access node region that the instances reside in.
Only the regions where Commvault Cloud backup gateways are present are available to select.
-
Click Next.
The Add Account page of the configuration wizard appears.
Add Account
-
In the Name box, enter the hypervisor name.
-
Under Advanced options, select the specific regional endpoints to protect all the instances in that region. By default, All Public regions is selected.
-
Click Next.
The Add VM Group page of the configuration wizard appears.
Add VM Group
A VM group is a set of VMs that you want to back up with the same settings. By default, the VM group is associated with all unprotected VMs that are discovered.
You can add content to the VM group by using rules that auto-discover content, by selecting specific instances, and by other ways. When you first create the VM group, you can add an instance that is relatively small, and then later you can update the VM group by adding more content.
-
In Name, enter a descriptive name for the VM group.
-
To create rules that auto-discover and select instances to back up, do the following:
-
Click Add, and then select Rule.
The Add rule dialog box appears.
-
From the list, select the type of rule to create, and then specify the rule:
-
Browse: Select specific instances. (Selecting this option changes the Add rule dialog box to the Add content dialog box.)
-
Guest DNS hostname: Select instances based on a hostname or a domain. For example, to select hosts on the "mycompany.com" domain, enter Guest DNS hostname | Ends with | mycompany.com.
-
Guest OS: Select instances based on operating system. For example, to select instances that are not Windows, enter Guest OS | Does not contain | Windows.
-
Instance name or pattern: Select instances based on their names. For example, to select instances that have a name that includes "east", enter Instance name or pattern | Contains | east.
-
Instance type: Select instances based on their type, such as t2.micro or c5.large.
-
Power state: Select instances based on a power status of Running or Stopped.
-
Region: Select instances based on the region that they reside in.
-
Tag name: Select instances based on the names of tags that are assigned to them. Enter the tag name in the region\tag_name format. For example, to select instances in the eastern US region that are for a department, enter Tag name | Equals | us-east-1\department.
-
Tag value: Select instances based on the values of tags that are assigned to them. Enter the tag value in the region\tag_name\tag_value format. For example, to select instances in the eastern US region for the human resources department, enter Tag value | Equals | us-east-1\department\HR.
-
Zone: Select instances based on the zone that they reside in. For example, to select instances that reside in any eastern US zone, enter Zone | Contains | us-east. You can enter the zone value by typing or browsing to select.
-
-
Click Save.
-
-
To select instances in other ways, do the following:
-
Click Add, and then select Content.
The Add content dialog box appears.
-
From the Browse and select VMs list, select one of the following:
-
By region: Select instances based on the region that they reside in.
-
By zone: Select instances based on the zone that they reside in.
-
By tags: Select instances based on tags that are assigned to them.
-
By instance type: Select instances based on their type, such as t2.micro or c5.large.
-
-
Select the instances to add to the VM group.
-
Click Save.
-
-
To see the instances that are selected for the VM group, click the Preview button.
-
Click Next.
The Plan page of the configuration wizard appears.
Plan
Select an existing backup plan or create a new backup plan. A backup plan specifies the storage to back up the data to and other settings such as recovery point objective (RPO) settings.
To create a backup plan, do the following:
-
Click the add button
.The Create backup plan dialog box appears.
-
In Plan name box, enter a descriptive name for the backup plan.
-
If you have your own storage, move the Bring your own storage toggle key to the right, and then add any of the following storages:
-
For Retention rules, select pre-defined settings or create custom settings, and then click Done.
-
To select pre-defined settings, under Retention rules, select Standard retention to retain the incremental backups for 1 month.
-
To create custom settings, move the Custom plan toggle key to the right, and then specify the following:
-
For Retention, specify the amount of time to retain the backups.
-
For Backups run every, specify how often to run backups.
-
-
-
Click Next.
The Summary page of the configuration wizard appears.
Summary
-
Review the summary.
-
Click Close.