Forest Recovery: Add backup locations

This article describes how to add Backup Locations in Cayosoft Guardian.

Backup Locations are network file shares, Azure blob storages, or Amazon S3 storage where the backup files can be created and managed by Cayosoft Guardian. DC Backups are registered backup files that are located in Backup Locations.

How to add a backup location

Network storage that supports SMB (Server Message Block) protocol version 3.0 (or higher), Amazon S3, and Azure blob storages can be added as Backup Locations in Cayosoft Guardian.

1. Open the Cayosoft Guardian web portal.
2. Expand the Forest Recovery node.
3. Select the Backup Locations node.
4. Expand the Add drop-down and select a backup locations type:

 

• Network share
• Azure Blob Storage
• Amazon S3.

5. Complete the below fields depending on the backup location type.
6. Click Add to add a new backup location.

Network share

Option	Description
Location	Provide a network path to a shared location. For example, \\corp.admin\backups
Account name	Enter the name of the account to access the specified share in a domain\user or user@domain.com format. For example:corp\administratoradministrator@corp.com
Password	Provide a password for the account used to connect to the share.
I want to use this storage with this Cayosoft Guardian installation	Select this checkbox to allow Cayosoft Guardian to store backups to this location. It is not recommended to use the same network storage for multiple installations of Cayosoft Guardian to avoid conflicts. Each instance of Cayosoft Guardian enumerates all stored backup files in the designated folder and deletes backups based on its retention policies.

Azure Blob storage

Option	Description
Azure subscription	Click the Browse icon and select your Azure subscription. This account must have a Contributor role in the subscription to create a resource group and all related resources. In case you would like to use a pre-created resource group, a connection account must have a Contributor role in the resource group.
Resource group name	Provide a name for the resource group. A resource group with the specified name will be created. To use an existing resource group, replace the automatically generated name with the name of your pre-created resource group. For example, CayosoftGuardianBackups
Storage account name	Provide a name for a storage account. A storage account with the specified name will be created. To use an existing storage account, replace the automatically generated name with the name of your pre-existing storage account.
Location	Select a location. For example, East US.
Azure blob container name	Provide a unique identifier used to organize and store blobs (binary large objects) within an Azure Storage account. Blob containers are akin to directories in a file system, providing a way to group blobs and manage them together. For example, data-backups
Make storage immutable	Enable this option to create the blob container in immutable mode. Immutable storage prevents stored backup data from being modified or deleted for the duration of the retention period. Azure enforces the immutability settings using Object Lock policies, providing additional protection against accidental or malicious data changes.
Retention period (days)	Specify the number of days that Azure must retain the immutable backup data. During this period, the data cannot be altered or removed. After the retention period expires, backups become deletable according to Azure immutability rules.

Amazon S3 storage

Option	Description
AWS account	Click the Browse icon and select your AWS account.
Bucket name	Provide a unique identifier used to organize and manage your data in Amazon S3. Buckets are the containers for objects (files) stored in Amazon S3. For example, data-backups
AWS region	Select the AWS region where the S3 bucket resides or will be created. For example, us-east-1.
Folder name	Provide a folder name. A folder with the specified name will be created.
Make storage immutable	Enable this option to apply an Object Lock policy to the S3 bucket, ensuring that backup data cannot be modified or deleted during the retention period. Immutable storage protects backups from accidental changes, deletion, or tampering by enforcing AWS WORM (Write Once, Read Many) compliance.
Retention period (days)	Specify the number of days that S3 must retain the immutable backup data. During this period, objects cannot be changed or removed. After the retention period expires, the data becomes deletable according to AWS Object Lock rules.

NOTE: Store additional backup files offsite in a secure location so that no backup file of a unique domain exists in only one physical site at any time. This precaution provides extra redundancy in case of physical disaster or theft.

How to add/delete credentials

To edit the credentials:

1. Open the Cayosoft Guardian web portal.
2. Expand the Forest Recovery node.
3. Select the Backup Locations node.
4. Select the storage and click Properties.
5. On the General tab, click Edit.
6. Click Add + and select the credentials to be added
7. For Token credential, specify:
   • Account name - the account name for which the credential is being configured
   • Refresh token - the refresh token (or password) associated with the account
   • Type - the type of token credentials.
8. For Password credential, specify:
   • Account name - the account name for which the credential is being configured
   • Refresh token - the refresh token (or password) associated with the account
   • Type - the type of password credentials.

To delete the credentials:

1. Expand the Forest Recovery node.
2. Select the Backup Locations node.
3. Select the storage and click Properties.
4. On the General tab, click Edit.
5. Click the vertical kebab icon and click Delete.
6. Confirm the deletion.