NetBackup™ Snapshot Manager Install and Upgrade Guide

Last Published:
Product(s): NetBackup (10.1)
  1. Introduction
    1.  
      About the deployment approach
    2.  
      Deciding where to run Snapshot Manager
    3.  
      About deploying Snapshot Manager in the cloud
  2. Section I. NetBackup Snapshot Manager installation and configuration
    1. Preparing for NetBackup Snapshot Manager installation
      1.  
        Meeting system requirements
      2.  
        Snapshot Manager host sizing recommendations
      3.  
        Snapshot Manager extension sizing recommendations
      4.  
        Creating an instance or preparing the host to install Snapshot Manager
      5.  
        Installing container platform (Docker, Podman)
      6.  
        Creating and mounting a volume to store Snapshot Manager data
      7.  
        Verifying that specific ports are open on the instance or physical host
      8.  
        Preparing Snapshot Manager for backup from snapshot jobs
    2. Deploying NetBackup Snapshot Manager using container images
      1.  
        Before you begin installing Snapshot Manager
      2.  
        Installing Snapshot Manager in the Docker/Podman environment
      3.  
        Verifying that Snapshot Manager is installed successfully
      4.  
        Restarting Snapshot Manager
    3. Deploying NetBackup Snapshot Manager extensions
      1.  
        Before you begin installing Snapshot Manager extensions
      2.  
        Downloading the Snapshot Manager extension
      3. Installing the Snapshot Manager extension on a VM
        1.  
          Prerequisites to install the extension on VM
        2.  
          Installing the extension on a VM
      4. Installing the Snapshot Manager extension on a managed Kubernetes cluster (AKS) in Azure
        1.  
          Prerequisites to install the extension on a managed Kubernetes cluster in Azure
        2.  
          Installing the extension on Azure (AKS)
      5. Installing the Snapshot Manager extension on a managed Kubernetes cluster (EKS) in AWS
        1.  
          Prerequisites to install the extension on a managed Kubernetes cluster in AWS
        2. Installing the extension on AWS (EKS)
          1.  
            Install extension using the extension script
      6. Installing the Snapshot Manager extension on a managed Kubernetes cluster (GKE) in GCP
        1.  
          Prerequisites to install the extension on a managed Kubernetes cluster in GCP
        2.  
          Installing the extension on GCP (GKE)
      7.  
        Install extension using the Kustomize and CR YAMLs
      8.  
        Managing the extensions
    4. NetBackup Snapshot Manager cloud plug-ins
      1.  
        How to configure the Snapshot Manager cloud plug-ins?
      2. AWS plug-in configuration notes
        1.  
          Prerequisites for configuring the AWS plug-in
        2.  
          Configuring AWS permissions for Snapshot Manager
        3.  
          AWS permissions required by Snapshot Manager
        4.  
          Before you create a cross account configuration
      3. Google Cloud Platform plug-in configuration notes
        1.  
          Google Cloud Platform permissions required by Snapshot Manager
        2.  
          Configuring a GCP service account for Snapshot Manager
        3.  
          Preparing the GCP service account for plug-in configuration
      4. Microsoft Azure plug-in configuration notes
        1.  
          Configuring permissions on Microsoft Azure
        2.  
          About Azure snapshots
      5. Microsoft Azure Stack Hub plug-in configuration notes
        1.  
          Configuring permissions on Microsoft Azure Stack Hub
        2.  
          Configuring staging location for Azure Stack Hub VMs to restore from backup
    5. NetBackup Snapshot Manager application agents and plug-ins
      1.  
        About the installation and configuration process
      2. Installing and configuring Snapshot Manager agent
        1.  
          Downloading and installing the Snapshot Manager agent
        2. Linux-based agent
          1.  
            Preparing to install the Linux-based agent
          2.  
            Registering the Linux-based agent
        3. Windows-based agent
          1.  
            Preparing to install the Windows-based agent
          2.  
            Registering the Windows-based agent
      3. Configuring the Snapshot Manager application plug-in
        1.  
          Configuring an application plug-in
        2. Microsoft SQL plug-in
          1.  
            Microsoft SQL plug-in configuration requirements
          2.  
            Restore requirements and limitations for Microsoft SQL Server
          3.  
            Steps required before restoring SQL AG databases
          4.  
            Additional steps required after restoring SQL AG databases
          5. Additional steps required after a SQL Server instance snapshot restore
            1.  
              Steps required after a SQL Server host-level restore
            2.  
              Steps required after a SQL Server instance disk-level snapshot restore to new location
        3. Oracle plug-in
          1. Oracle plug-in configuration requirements
            1.  
              Optimizing your Oracle database data and metadata files
          2.  
            Restore requirements and limitations for Oracle
          3.  
            Additional steps required after an Oracle snapshot restore
      4. NetBackup protection plan
        1.  
          Creating a NetBackup protection plan for cloud assets
        2.  
          Subscribing cloud assets to a NetBackup protection plan
      5.  
        Configuring VSS to store shadow copies on the originating drive
      6.  
        Additional steps required after restoring an AWS RDS database instance
    6. Protecting assets with NetBackup Snapshot Manager's agentless feature
      1.  
        About the agentless feature
      2. Prerequisites for the agentless configuration
        1.  
          Configuring SMB for Windows (Optional)
        2.  
          Configuring WMI security for Windows (optional)
      3.  
        Configuring the agentless feature
      4.  
        Configuring the agentless feature after upgrading Snapshot Manager
    7. Volume Encryption in NetBackup Snapshot Manager
      1.  
        About volume encryption support in Snapshot Manager
      2.  
        Volume encryption for Azure
      3.  
        Volume encryption for GCP
      4.  
        Volume encryption for AWS
    8. NetBackup Snapshot Manager security
      1.  
        Configuring security for Azure Stack
      2.  
        Configuring the cloud connector for Azure Stack
      3.  
        CA configuration for Azure Stack
      4.  
        Securing the connection to Snapshot Manager
  3. Section II. NetBackup Snapshot Manager maintenance
    1. NetBackup Snapshot Manager logging
      1.  
        About Snapshot Manager logging mechanism
      2. How Fluentd-based Snapshot Manager logging works
        1.  
          About the Snapshot Manager fluentd configuration file
        2.  
          Modifying the fluentd configuration file
      3.  
        Snapshot Manager logs
      4.  
        Agentless logs
      5.  
        Troubleshooting Snapshot Manager logging
    2. Upgrading NetBackup Snapshot Manager
      1.  
        About Snapshot Manager upgrades
      2.  
        Supported upgrade path
      3.  
        Upgrade scenarios
      4.  
        Preparing to upgrade Snapshot Manager
      5.  
        Upgrading Snapshot Manager
      6.  
        Upgrading Snapshot Manager using patch or hotfix
      7. Migrating and upgrading Snapshot Manager
        1.  
          Before you begin migrating Snapshot Manager
        2.  
          Migrate and upgrade Snapshot Manager on RHEL 8.6 or 8.4
      8. Post-upgrade tasks
        1.  
          Upgrading Snapshot Manager extensions
      9.  
        Post-migration tasks
    3. Uninstalling NetBackup Snapshot Manager
      1.  
        Preparing to uninstall Snapshot Manager
      2.  
        Backing up Snapshot Manager
      3.  
        Unconfiguring Snapshot Manager plug-ins
      4.  
        Unconfiguring Snapshot Manager agents
      5.  
        Removing the Snapshot Manager agents
      6.  
        Removing Snapshot Manager from a standalone Docker host environment
      7.  
        Removing Snapshot Manager extensions - VM-based or managed Kubernetes cluster-based
      8.  
        Restoring Snapshot Manager
    4. Troubleshooting NetBackup Snapshot Manager
      1.  
        Troubleshooting Snapshot Manager
      2.  
        SQL snapshot or restore and granular restore operations fail if the Windows instance loses connectivity with the Snapshot Manager host
      3.  
        Disk-level snapshot restore fails if the original disk is detached from the instance
      4.  
        Discovery is not working even after assigning system managed identity to the control node pool
      5.  
        Performance issue with GCP backup from snapshot
      6.  
        Post migration on host agents fail with an error message
      7.  
        File restore job fails with an error message

Prerequisites for the agentless configuration

Prerequisites for using the agentless feature in Linux

  • Have the following information with you:

    • Host user name

    • Host password or SSH key

    Snapshot Manager requires these details to gain access to the host and perform requested operations.

  • On hosts where you wish to configure this feature, grant password-less sudo access to the host user account that you provide to Snapshot Manager.

Granting password-less sudo access to host user account

Snapshot Manager requires a host user account to connect and perform operations on the host. You must grant password-less sudo access to the user account that you provide to Snapshot Manager. This is required for all the hosts where you wish to configure the agentless feature.

Note:

The following steps are provided as a general guideline. Refer to the operating system or the distribution-specific documentation for detailed instructions on how to grant password-less sudo access to a user account.

  1. Perform the following steps on a host where you want to configure the agentless feature

  2. Verify that the host user name that you provide to Snapshot Manager is part of the wheel group.

    Log on as a root user and run the following command:

    # usermod -aG wheel hostuserID

    Here, hostuserID is the host user name that you provide to Snapshot Manager.

  3. Log out and log in again for the changes to take effect.

  4. Edit the /etc/sudoers file using the visudo command:

    # sudo visudo

  5. Add the following entry to the /etc/sudoers file:

    hostuserID ALL=(ALL) NOPASSWD: ALL

  6. In the /etc/sudoers file, edit the entries for the wheel group as follows:

    • Comment out (add a # character at the start of the line) the following line entry:

      # %wheel ALL=(ALL) ALL

    • Uncomment (remove the # character at the start of the line) the following line entry:

      %wheel ALL=(ALL) NOPASSWD: ALL

    The changes should appear as follows:

    ## Allows people in group wheel to run all commands
# %wheel ALL=(ALL) ALL

## Same thing without a password
%wheel ALL=(ALL) NOPASSWD: ALL

  7. Save the changes to the /etc/sudoers file.

  8. Log out and log on to the host again using the user account that you provide to Snapshot Manager.

  9. Run the following command to confirm that the changes are in effect:

    # sudo su

    If you do not see any prompt requesting for a password, then the user account has been granted password-less sudo access.

    You can now proceed to configure the Snapshot Manager agentless feature.

Prerequisites for using the agentless feature in Windows

  • The user account used to connect to remote instance should be able to:

    • Access remote admin share (ADMIN$). Enabled by default.

    • Access to root\cimv2

  • Configure the following ports:

    • Modify the security group to allow inbound traffic on the ports 135, 445 and dynamic port or fixed port for WMI .

    • Enable inbound rules in the firewall for the ports 135, 445 and the dynamic or fixed WMI-IN ports on Windows hosts.

      Note:

      The dynamic range for the ports is 49152-65535.

  • Disable User Account Control for the users groups accessing the agentless feature.

  • For protecting SQL applications, the user account used for connecting to the cloud host, must have the required admin privileges to access the SQL server.