Automate Cloud Backup Integration In #DPM With #AzureBackup And #PowerShell @SCDPM @AzureBackup

Introduction

Azure Backup is the Azure-based service you can use to back up (or protect) and restore your data in the Microsoft cloud. Azure Backup replaces your existing on-premises or off-site backup solution with a cloud-based solution that is reliable, secure, and cost-competitive. System Center Data Protection Manager (SC DPM) and Microsoft Azure Backup Server (MABS) can be integrated with Azure Backup service so you can protect your data in the cloud without worrying about Ransomware attack and data corruption.

For more information about Azure Backup, please check my recent published Whitepaper here.

Cloud Backup Integration Process

When you are planning to integrate System Center Data Protection Manager (SC DPM) and Microsoft Azure Backup Server (MABS) with Azure Backup, there are multiple steps involved such as:

  1. Having a healthy DPM environment.
  2. Create a new Recovery Services Vault in Azure.
  3. Set up the appropriate storage replication type (Geo-redundant / Locally-redundant).
  4. Download the latest Microsoft Azure Recovery Services (MARS) agent.
  5. Download Azure Recovery Vault Credentials file.
  6. Install Microsoft Azure Recovery Services (MARS) agent.
  7. Register DPM Server with Azure Backup Service.
  8. Configure DPM cloud settings such as (cloud recovery staging area directory, networking, and passphrase encryption key)
  9. Finally, keep the passphrase key safe and secure once it is set, because you will not be able to restore data from Azure without this passphrase.

So it’s a long process and time consuming especially if you have multiple DPM servers that you want to integrate with Azure Backup service.

Microsoft has a detailed document on how to prepare back up workloads to Azure with DPM, so if you are interested in the manual approach, please check the following guide.

In this blog post, I will share with you how to automate the entire Cloud Backup integration process in DPM and Azure Backup.

Automate Cloud Backup Integration

I was working lately on a PowerShell tool that will help me to automate the cloud backup integration process with Azure Backup. So instead of repeating the same steps above every time, I developed that tool to automate the entire process. When you run this tool on the DPM server, it will install the required PowerShell modules, then download the latest Microsoft Azure Recovery Services (MARS) agent, and then install it in silent mode if it’s not installed. You will be prompted to authenticate to Azure, the tool will create a new Recovery Services Vault and set it’s storage replication type. Then it will register DPM server with Azure Backup service for online protection, then configure DPM cloud settings, and finally store the Encryption Passphrase Key in Azure Key Vault.

You can run this tool as follows and watch it doing its magic:

Open the Azure Portal and check your DPM server is registered successfully with Azure Backup service.

Browse to Azure Key Vaults and check the Passphrase Encryption Key is stored safely. Please remember that you will not be able to restore data from Azure without this passphrase key.

Finally, launch the DPM Administrator Console and you are good to go to start protecting your workloads to Azure Backup.

PowerShell Code

The complete script is detailed below to automate the entire cloud backup integration process:

Roadmap

I am planning to improve this tool in the future. This is still version 1.0. If you have any feedback or changes that everyone should receive, please feel free to leave a comment below.

Until then… Stay protected and secure with DPM and Azure Backup.

__
Thank you for reading my blog.

If you have any questions or feedback, please leave a comment.

-Charbel Nemnom-

Advertisements
About Charbel Nemnom 399 Articles
Charbel Nemnom is a Cloud Solutions Architect and Microsoft Most Valuable Professional (MVP), totally fan of the latest's IT platform solutions, accomplished hands-on technical professional with over 17 years of broad IT Infrastructure experience serving on and guiding technical teams to optimize performance of mission-critical enterprise systems. Excellent communicator adept at identifying business needs and bridging the gap between functional groups and technology to foster targeted and innovative IT project development. Well respected by peers through demonstrating passion for technology and performance improvement. Extensive practical knowledge of complex systems builds, network design and virtualization.

Be the first to comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.