Acronis Cyber Protect Cloud With Wasabi

28 Aug 2024
4 Minutes to read

Acronis Cyber Protect Cloud With Wasabi

Updated on 28 Aug 2024
4 Minutes to read

Article summary

Did you find this summary helpful?

Thank you for your feedback

How do I use Acronis Cyber Protect Cloud with Wasabi?

Acronis Cyber Protect Cloud represents an all-in-one cyber protection solution that integrates backup and recovery, disaster recovery, malware prevention, security controls, remote assistance, monitoring, and reporting. Wasabi can now be used as a destination for the Cyber Protect backups.

Prerequisites

An active Acronis Cyber Protect Cloud account to access Cyber Protection Service.
- If you are an Acronis partner, create accounts for your customers.
- If you are a customer of an Acronis partner, you will receive the user account from your partner.
- Have Cyber Administrator, User, or Company Administrator access.
A Wasabi Cloud Storage account.

Reference Architecture

Access Requirements Needed to Backup to Wasabi

To define a Wasabi bucket as a backup location, there are a few requirements that need to be considered.

A Wasabi Bucket needs to be created.
A user with relevant policies needs to be created.

For security purposes, root user access keys cannot be used to define a backup location in Acronis. A user with relevant policies should be created. The credentials of this user will be used to define the Backup Location in Acronis.

The sections below outline the steps to fulfill the access requirements needed to create a Wasabi backup location in Acronis.

Bucket Creation

Create a bucket. For more information, review Creating a Bucket.

Policy Permissions

This section provides examples of the access policies that can be used. Using one of the examples, create a policy to be applied to the user. For more information, review Creating a Policy.

Example 1

This policy gives the user the minimum set of permissions to a wide scope of resources.

In the policy, * indicates all resources.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "s3:ListAllMyBuckets",
      "Resource": "*"
    },
    {
      "Effect": "Allow",
      "Action": "s3:GetBucketLocation",
      "Resource": "*"
    },
    {
      "Effect": "Allow",
      "Action": [
        "iam:CreateRole",
        "iam:AttachRolePolicy",
        "sts:GetCallerIdentity",
        "sts:AssumeRole"
      ],
      "Resource": "*"
    },
    {
      "Effect": "Allow",
      "Action": [
        "s3:PutObject",
        "s3:GetObject",
        "s3:DeleteObject"
      ],
      "Resource": "*"
    },
    {
      "Effect": "Allow",
      "Action": "s3:ListBucket",
      "Resource": "*"
    }
  ]
}

Example 2

This policy gives the user the minimum set of permissions to a specific bucket.

[BUCKETNAME] should be replaced with the name of the bucket and [ACCOUNTID] should be replaced with the ID of the Wasabi account.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "s3:ListAllMyBuckets",
      "Resource": "*"
    },
    {
      "Effect": "Allow",
      "Action": "s3:GetBucketLocation",
      "Resource": "arn:aws:s3:::[BUCKETNAME]"
    },
    {
      "Effect": "Allow",
      "Action": [
        "iam:CreateRole",
        "iam:AttachRolePolicy",
        "sts:GetCallerIdentity",
        "sts:AssumeRole"
      ],
      "Resource": "arn:aws:iam::[ACCOUNTID]:*"
    },
    {
      "Effect": "Allow",
      "Action": [
        "s3:PutObject",
        "s3:GetObject",
        "s3:DeleteObject"
      ],
      "Resource": "arn:aws:s3:::[BUCKETNAME]/*"
    },
    {
      "Effect": "Allow",
      "Action": "s3:ListBucket",
      "Resource": "arn:aws:s3:::[BUCKETNAME]"
    }
  ]
}

Creating a User

Create a user with programmatic (create API key) access and apply the policy created above to the user. For more detail, refer to Creating a User.

CAUTION: Remember to save the access keys, as they will be needed to define the backup location.

Now, proceed to create the backup location in Acronis Cyber Protect console.

Creating a Backup Location in Acronis Cyber Protect Console

Log into the Acronis Cyber Protect console. Click Backup Storage.
In the Backup Storage tab, click +Add Location.
Navigate to Public cloud and select Wasabi from the drop-down menu.
Click Add new connection.
In the Wasabi connection dialog box, provide the following details and click Connect.
Connection name: A name for a Wasabi connection (Wasabi-2 is used in the example below).
Access key ID: The access key of the Wasabi user created above in Access requirements needed to backup to Wasabi.
Access key: The secret access key of the Wasabi user created above in Access requirements needed to backup to Wasabi.
The Wasabi connection created in the previous step is populated in the S3-compatible connection field. Provide a Location name (Wasabi central is used in this example) and select the bucket, created above in Access requirements needed to backup to Wasabi, from the Buckets drop-down menu. You can use the search bar to search for the bucket. Click Add.
The Locations page will display the newly added location.

Next, create a Protection plan with Wasabi storage or edit an existing plan to add Wasabi as the storage destination.

Creating a Protection Plan With a Wasabi Location

Navigate to Devices --> All devices.
Select the required device. Click Protect.
Click Create plan to expand the menu. Click Protection.
Provide a name for the Backup plan and click Where to backup to configure Wasabi as the backup destination.
Select the Wasabi location created in Creating a Backup Location in Acronis Cyber Protect Console .
Configure the other fields as desired. Confirm the backup destination is Wasabi storage and click Create.
The protection plan with Wasabi storage will be created and assigned to the device.

The backups of this device will be stored in Wasabi cloud storage.

Assigning the Wasabi Location to an Existing Protection Plan

To assign the Wasabi location created earlier to a protection plan, navigate to Management --> Protection Plans. Select the desired protection plan and click Edit.
In the Details dialog box, click Where to back up.
In the Where to back up dialog box, select the Wasabi location created in Creating a Backup Location in Acronis Cyber Protect Console.
Confirm that the Where to back up field displays the added location. Click Save.

The backups of the devices assigned to this protection plan will be stored in Wasabi cloud storage.

What's Next

Wasabi App for Acronis Cyber Protect Cloud

Table of contents

Reference Architecture
Access Requirements Needed to Backup to Wasabi
Creating a User 
Creating a Backup Location in Acronis Cyber Protect Console
Creating a Protection Plan With a Wasabi Location
Assigning the Wasabi Location to an Existing Protection Plan

WASABI and the WASABI logo are trademarks of Wasabi Technologies LLC and may not be used without permission of Wasabi Technologies. All other names are used for identification purposes only and are trademarks or registered trademarks of their respective companies.

Information presented herein is subject to change without notice. Companies, names, and data used in examples are fictitious unless otherwise noted. No part of this information may be reproduced or transmitted in any form by means electronic or mechanical, for any purpose, without express written permission of Wasabi Technologies.