Cohesity Alta SaaS Protection Administrator's Guide

Last Published:
Product(s): Alta SaaS Protection (3.2.1)
  1. Introduction to Cohesity Alta SaaS Protection
    1.  
      About Cohesity Alta SaaS Protection
    2.  
      Features of Cohesity Alta SaaS Protection
    3.  
      Architecture of Cohesity Alta SaaS Protection
    4.  
      Operational workflow
    5.  
      Extra Data Backup (EDB)
  2. Cohesity Alta SaaS Protection Copilot (AI chatbot)
    1.  
      Cohesity Alta SaaS Protection Copilot (AI chatbot)
  3. Cohesity Alta SaaS Protection Administrator portal (Web UI)
    1.  
      About Cohesity Alta SaaS Protection Administration portal
    2.  
      Configure Cohesity Alta SaaS Protection Administration portal
    3.  
      View upgrade history
  4. Supported SaaS workloads
    1.  
      Supported SaaS workloads and backup capabilities
  5. Workflow to protect data using Cohesity Alta SaaS Protection
    1.  
      Workflow to protect data using Cohesity Alta SaaS Protection
    2.  
      Know your subscription details
  6. Manage users and roles
    1.  
      Role-based access control
    2. Permissions tab
      1.  
        Users and groups page
      2.  
        Roles page
      3.  
        Unrecognized users page
      4.  
        Settings page
  7. API permissions
    1.  
      API permissions for Microsoft 365 workloads
    2.  
      API permissions for Gmail and Google Drive
    3.  
      System and API permissions for Salesforce
    4.  
      API permissions for Entra ID
    5.  
      App permissions of Web App
  8. What is a connector?
    1.  
      What is a connector?
    2.  
      About transient errors
    3.  
      Overview of adding connectors
    4.  
      Configure General settings
    5.  
      Configure Capture scope
    6.  
      Configure User filter
    7.  
      Configure Group filter
    8.  
      Configure Folder filter
    9. Configure credentials
      1.  
        Assign Microsoft 365 apps registration
      2.  
        Microsoft 365 apps registration status
      3.  
        Manually approve Microsoft 365 apps registration
      4.  
        Approve Microsoft 365 apps using the App Consent Grant utility
      5.  
        Microsoft 365 apps recovery
    10.  
      Configure Custom backup policy and guidelines
    11.  
      Configure Delete policy for SharePoint Online and guidelines
    12.  
      Configure Stubbing policy
    13.  
      Guidelines to configure Stubbing policy for SharePoint Online
    14.  
      Schedule a backup
    15.  
      Configure email addresses to get notifications
    16.  
      Review configuration and edit/save/initiate backup
    17.  
      Connectors page
    18.  
      Connector status
    19.  
      Edit connector configuration
    20.  
      Delete connectors
  9. Pre-requisites to setup protection for M365
    1.  
      Pre-requisites to setup protection for M365
  10. Protect Microsoft 365 Multi-Geo tenant
    1.  
      Considerations for adding SharePoint/Teams Sites/OneDrive connectors for Microsoft 365 Multi-Geo tenant
  11. Protect Exchange Online data
    1. Setting up Exchange Online data protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for Exchange connectors
  12. Protect SharePoint sites and data
    1. Setting up SharePoint Online protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for SharePoint connectors
      2.  
        Configure additional backup options for SharePoint/Teams site/ OneDrive connectors
    2. Backup and restore support for SharePoint Online
      1.  
        Supported and unsupported SharePoint Settings and Types for backup and restore
      2.  
        Supported Sites and List templates for backup and restore
      3.  
        Supported SharePoint permission objects for backup and restore
    3.  
      End-user SharePoint data access in Cohesity Alta SaaS Protection
    4.  
      Run the Delete and Stubbing policies to the SharePoint Online environment
    5.  
      Backup limitations for SharePoint Online
  13. Protect Teams sites
    1. Setting up Teams Site protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for Team site collections connectors
    2.  
      Backup limitations for Teams site collections
  14. Protect OneDrive data
    1. Setting up OneDrive protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for OneDrive connectors
  15. Protect Teams chats
    1. Setting up Teams chat protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for Teams chat connectors
    2.  
      Backup limitations for Teams chat
  16. Protect GoogleDrive data
    1.  
      Prerequisites to setup Google Drive protection with Cohesity Alta SaaS Protection
    2. Setting up Google Drive protection with Cohesity Alta SaaS Protection
      1.  
        Configure Capture scope Google Drive connectors
    3.  
      Backup limitations for Google Drive
    4.  
      FAQs
  17. Protect Gmail data
    1.  
      Prerequisites to setup Gmail protection with Cohesity Alta SaaS Protection
    2. Setting up Gmail protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for Gmail connectors
  18. Protect Audit logs
    1.  
      Add Audit log connectors
    2.  
      Audit log connector limitations
  19. Protect Salesforce data and metada
    1.  
      About Salesforce protection
    2.  
      Key considerations and prerequisites for adding Salesforce connectors
    3.  
      Add Salesforce connectors
    4.  
      Limitations of Salesforce connectors
    5.  
      Salesforce Objects not supported for backup
  20. Protect Entra ID objects
    1.  
      Setting up Entra ID protection with Cohesity Alta SaaS Protection
    2.  
      Backup and restore limitations for Entra ID
  21. Protect Box data
    1.  
      Prerequisites for Box connectors configuration
    2. Setting up Box protection with Cohesity Alta SaaS Protection
      1.  
        Configure capture scope for Box connector
    3.  
      Backup limitations for Box data
  22. Protect Slack data
    1.  
      Add Slack connectors
  23. Protect Email/Message data
    1.  
      Prerequisite for Email/message connector
    2.  
      Add Email/Messages file
  24. Configure Retention policies
    1.  
      About WORM policies
    2.  
      Ingestion WORM policies page
    3.  
      Add/edit Ingestion WORM retention policies and guidelines
    4.  
      Add/edit At-Rest WORM retention policies
    5.  
      Add/edit Deletion policies
    6.  
      View deletion history
    7.  
      How to edit the policy evaluation interval?
    8.  
      How to add a Location filter?
    9.  
      How to add a filter?
  25. Perform backups
    1.  
      Perform on-demand/ad-hoc backup
    2.  
      Backup dashboard
    3.  
      Video tutorial for connector troubleshooting
    4. View backup events
      1.  
        About Event suppression
      2.  
        Create event suppression rules
    5.  
      Viewing backup tasks details
  26. View and share backed-up data
    1.  
      Browse backed-up data
    2.  
      Share data
    3.  
      Remove data sharing
  27. Analytics
    1.  
      About analytics
    2.  
      Analytics page and refresh behavior
    3.  
      Aggregation buckets
    4.  
      Gain insights into storage utilization
    5.  
      Gain insights into storage utilization for Entra ID and Salesforce connectors
    6.  
      Gain insights into blocked activities, most active users, and more
    7.  
      Gain insights into data volume (size and item count) on legal hold
    8.  
      Gain insights into data volume (size and item count) saved in different Enhanced cases
    9.  
      Gain insights into data volume (size and count) under different policies
    10.  
      Gain insights into data volume (size and item count) under different Tags
    11.  
      Gain insights into data volume (size and item count) under different Tags behaviors
    12.  
      Gain insights into storage savings after deduplication and compression
    13.  
      Gain insights into data ingestion trends
  28. Perform restores using Administration portal
    1.  
      About restore
    2.  
      Prerequisites for restore
    3.  
      Restore Exchange Online mailboxes
    4. Restore SharePoint/OneDrive/Teams Sites and data
      1.  
        Restore of OneDrive, Microsoft 365 Group, and Microsoft Teams sites
      2.  
        Restore limitations for SharePoint Online
    5. Restore Teams chat messages and Teams channel conversations
      1.  
        Restore limitations for Teams chat
    6.  
      Restore O365 audit logs
    7. Restore Box data
      1.  
        Restore limitations for Box
    8. Restore Google Drive data
      1.  
        Overwrite restore behavior for Box/Google Drive data
    9.  
      Restore Gmail data
    10. About Salesforce Data, Metadata, and CRM Content restore and Sandbox seeding
      1.  
        Guidelines for Schema changes in Salesforce organization to prevent restore failures
      2.  
        Restore Standard and Custom objects (Structured data restore)
      3.  
        Custom Object restore - post processing steps
      4.  
        Restore specific Records (Structured data) using Query filters
      5.  
        Restore Salesforce CRM Content (Unstructured data restore)
      6.  
        Restore Salesforce files/documents in Public/Shared libraries (Unstructured data restore)
      7.  
        Limitations of Salesforce Data restore
      8.  
        Salesforce Objects not supported for restore
      9.  
        Key considerations for Salesforce Metadata restore
      10.  
        Restore Salesforce Metadata
      11.  
        Limitations of Salesforce Metadata backup and restore
    11. About Entra ID (Azure AD) objects and records restore
      1.  
        Permissions requirement
      2.  
        Best practices to restore Entra ID objects
      3.  
        Restore an Entra ID object
      4.  
        Restore specific records within Entra ID objects
    12.  
      Restore Slack data
    13.  
      Restore data to File server
    14.  
      Set default restore point
    15.  
      Configure Restore all, Restore all versions, Point-in-time, and Specific range restore options
    16.  
      Configure email addresses for notifications
    17.  
      Downloading an item
  29. Restore dashboard
    1.  
      About Restore dashboard
    2.  
      Restore job statuses
    3.  
      How to cancel a restore job?
    4.  
      View the restore events
  30. Install services and utilities
    1.  
      About services and utilities
    2.  
      Pre-requisites to download and install services and utilities
    3.  
      Downloading services and utilities
    4.  
      Where to install the services and utilities
    5.  
      Installing or upgrading services and utilities
    6.  
      Configuring service accounts for services and utilities
    7. About the Apps Consent Grant Utility
      1.  
        Downloading the Apps Consent Grant Utility
      2.  
        Installing or upgrading the Apps Consent Grant Utility
      3.  
        Post-installation activities for the Apps Consent Grant Utility
  31. Discovery
    1.  
      About eDiscovery/searches
    2.  
      Add search templates
    3.  
      Add Discovery cases
    4.  
      Perform ad hoc search and add data to Discovery cases
    5.  
      View data in Discovery cases
    6.  
      Edit Discovery cases
    7.  
      DeleteDiscovery cases
    8.  
      Assign Discovery cases to users
  32. Configure Tagging polices
    1.  
      About the Tagging policy
    2.  
      Add Tags
    3.  
      Add/edit Tagging policies
    4. Adding regular expressions
      1.  
        RegEx and query examples for PII detection
  33. Configure Tiering policy
    1. About the Tiering policy
      1.  
        Storage tiering and full-text search
      2.  
        User experience on storage tiering
      3.  
        Priority for storage Tiering
    2.  
      Add/edit Tiering policies
  34. Auditing
    1.  
      Auditing
  35. Manage Stors (Storages)
    1.  
      Viewing Stors (Storages)
    2.  
      Requesting a new Stor
    3.  
      General tab
    4.  
      Version control settings
    5.  
      Metadata tab
    6.  
      Statistical policies tab
    7.  
      Location-Mapping tab
    8.  
      Backup tab
    9.  
      Custodian Groups tab
    10.  
      Advanced tab
    11.  
      Analytics tab

Setting up Google Drive protection with Cohesity Alta SaaS Protection

To protect users' data on the Google Drive environment using Cohesity Alta SaaS Protection, you need to add and set up a Cohesity Alta SaaS Protection Google Drive connector based on your backup requirements.

Before you begin:

You must know the following before adding a connector:

  • Ensure that all prerequisites are completed.

    See Prerequisites to setup Google Drive protection with Cohesity Alta SaaS Protection.

  • The following items are supported for backup and restore:

    • Files and documents: All files and documents that are stored in Google Drive, including documents, spreadsheets, presentations, images, videos, and any other file types.

    • User drives and Shared drives: Drives dedicated to each user and common shared Drives.

    • Version history: Version history of files.

    • Deleted files: Deleted files.

    • Metadata and file properties: Metadata and properties, such as owner information, last modified date, and custom metadata fields associated with Google Drive.

  • The following items are not supported for backup and restore.

    • You cannot backup of the following data in the Google Drive environment:

      • Google Jamboard

      • Google Sites

      • Google Maps

      • Google Forms

      • Local computer files under Computers node of Google Drive.

      • Shared with me folders or files.

      • Drive/Folder color preference.

      • Star status of folder or file.

      • Sharing permissions (whom a folder or file is shared with)

    • You can backup and restore the following Google Workspace applications, but not in the native format. The supported formats for backup and their format conversion after restore are as follows:

      Item type

      Cohesity Alta SaaS Protection backup and restore format

      Google Docs

      DOCX

      Google Sheets

      XlSX

      Google Presentation

      PPTX

      Google Drawing

      PNG

      Google Apps Script

      JSON

    • Other considerations:

      • You cannot restore the Google Drive data using the Cohesity Alta SaaS Protection End-User portal.

Step-by-step procedure to add a Google Drive connector:

Each tab in the connector creation workflow includes a help icon (?) on the left. Click this icon to open the corresponding help topic for that tab, which guides you through the setup process step by step.

Important: If group email addresses are added to the scope for specific users, the connector will retrieve the users in the group and back up their data. Similarly, group email addresses added to the Excluded Users scope will also be processed in the same manner.

Procedure:

  1. Access the Administration portal and select the connector type.

    • Access the Administration portal.

    • Click Connectors on the Backup card.

    • Click New backup connector.

    • Click GoogleDrive.

  2. On the General tab, set up the basic configuration for the connector.

    See Configure General settings.

  3. On the Capture scope tab, configure the capture scope.

    See Configure Capture scope Google Drive connectors .

  4. On the Credentials tab, configure the credentials as follows:

    Admin User SMTP

    Enter the SMTP address of a user who has Admin API permissions.

    Credentials JSON

    Paste the content from a JSON file, which is generated as part of the prerequisites.

    For more information on the prerequisites to add Google Drive connectors, refer to the following link:

    https://www.veritas.com/support/en_US/article.100050288

  5. On the Policy configuration tab, configure backup policy for granular backup requirements.

    See Configure Custom backup policy and guidelines.

  6. On the Scheduling tab, schedule when the backup job should run.

    See Schedule a backup.

  7. On the Email notifications tab, configure email addresses to receive notifications about backup activities.

    See Configure email addresses to get notifications.

  8. On the Review tab, save the settings and initiate the backup.

    See Review configuration and edit/save/initiate backup.

Related topics: