- 13 Jun 2024
- 6 Minutes to read
- Print
- PDF
Arcserve ShadowXafe With Wasabi
- Updated on 13 Jun 2024
- 6 Minutes to read
- Print
- PDF
How do I use Arcserve ShadowXafe with Wasabi?
Arcserve ShadowXafe is a data recovery and backup software solution that brings comprehensive, SLA-driven management for complete data protection. ShadowXafe has been validated with Wasabi.
Please Note: The data restoration process is handled by your specific backup software application. As there are many potential variables that will affect your unique environment, it is strongly recommended that you seek the guidance of your backup software's technical support team in the event that you encounter difficulty, or have application-specific inquiries.
Prerequistes
Active ShadowXafe subscription
Access to OneSystem Management console
An active Wasabi account
Please Note: The data restoration process is handled by your specific backup software application. As there are many potential variables that will affect your unique environment, it is strongly recommended that you seek the guidance of your backup software's technical support team in the event that you encounter difficulty, or have application-specific inquiries.
Setting up the environment in OneSystem
Log in to the OneSystem management interface.
Please refer to the ShadowXafe deployment guide to set up the OneSystem.
Navigate to the "Configuration" tab on the menu on the left hand pane
On the Configuration page, navigate to the Sites tab and click "Add Site"
Provide a Site name and click "Save".
The Sites page will now display the site created above.
We need to deploy the service node on the vCenter server. Download and mount the StorageCraft Deployment tool iso file.
Run the StorageCraft Deployment tool. Click "Next" on the Welcome screen
The End User License Agreement Windows is displayed, read the EULA, check the "I Agree" check box and click "Next".
In the Management Login window, select the vCenter or ESXi host address from the Management Solution dropdown menu.
Provide the Connection information, login credentials and click "Next"
In the Deployment Type window, select "Service Node(s) managed with OneSystem" and click "Next".
Please refer to ShadowXafe documentation for more information on the deployment options
In the Deploy Preparation window, provide the administrative username and password of the OneSystem Management portal and click "Next".
In the Site window, select the your site from the Service node site assignment dropdown menu and click "Next".
The Service Node Targets tab displays the Hosts managed by the vCenter Server. Select the host where the service node is to be deployed, provide the required information and click Next.
Provide the network information for the Service node and click OK.
In the Service Node tab, create an account to administer the service node and click Next.
The Summary tab displays the settings configured for the service node. Click Deploy.
When the deployment is finished, login to the OneSystem and verify that the Service node is listed in the Service Node tab under Configuration.
Navigate to the Environments tab and click Add vCenter or ESXi host to add your environment.
Configuring Wasabi as Storage
To add Wasabi cloud storage as a target, navigate to the Storage tab and click on Add Storage.
In the Add Storage window, provide the following details and click "Save"
Type - S3
Name - provide an appropriate name for the Storage
Site - select the required Site from the dropdown
Provider - select Wasabi from the dropdown
Access Key
Secret Key
Region Name - region where the bucket is located
Bucket Name
Encryption Password
Note: This config example discusses the use of Wasabi's us-east-1 storage region. To use other Wasabi storage regions, please use the appropriate Wasabi region names as described below -Wasabi US East 1 (N. Virginia): us-east-1
Wasabi US East 2 (N. Virginia): us-east-2
Wasabi US Central 1 (Texas): us-central-1
Wasabi US West 1 (Oregon): us-west-1
Wasabi EU Central 1 (Amsterdam): eu-central-1
Wasabi EU West 1 (London): s3.eu-west-1
Wasabi EU West 2 (Paris): s3.eu-west-2
Wasabi AP Northeast 1 (Tokyo): s3.ap-northeast-1
Wasabi AP Northeast 2 (Osaka): s3.ap-northeast-2
The Wasabi cloud storage will now be listed on the Storage tab.
Configuring Protection flows using policies
Adding Protection to the VMs involves creating policies and assigning the policies to the required VMs. In this section, we have outlined three different protection flows that can be configured utilizing Wasabi.
Designing a Direct-to-Cloud backup protection flow
The Direct-to-Cloud protection flow utilizes Wasabi as a primary destination for the backups.Navigate to the Policies tab on the left hand side and click Add new to create a new policy.
In the Add policy window, provide a policy name and select the above configured storage as the Storage Destination. Provide the desired frequency to take the snapshots and click Save.
The Policies tab displays the policy created above.
Designing a Direct-to-Cloud backup protection flow with Cloud Replication services
When designing the protection flow for your policy, you have the option to create a replication target if needed. In the example below, we configure a protection flow with a Wasabi bucket as a backup destination and enable replication to replicate the backup data to a different Wasabi region.
The Wasabi bucket that will be used for replication will need to be added as Storage following the steps described in Configuring Wasabi as a Storage destination
Please note that in case of replication, the data flows from Backup destination --> Service Node --> Replication target.
Navigate to the Policies tab on the left hand side and click Add new to create a new policy. In the Add policy window, provide a policy name and select the desired storage as the Storage Destination. Provide the desired frequency to take the snapshots.
In the Add Replication section, select your Wasabi storage as the "Replicate to" destination, configure the desired replication frequency and click Add.
The Wasabi-replication storage destination is added to the Replication target.
Click Save to save the policy.
Designing a local backup protection flow with Cloud Replication services
In the example below, we configure a protection flow with a SMB share as a backup destination and enable replication to replicate the backup data to a Wasabi.
The local storage that will be used for replication will need to be added as Storage (select the appropriate Storage Type - NFS/SMB/iSCSI)
Navigate to the Policies tab on the left hand side and click Add new to create a new policy. In the Add policy window, provide a policy name and select the configured SMB storage as the Storage Destination. Provide the desired frequency to take the snapshots.
In the Add Replication section, select your Wasabi storage as the "Replicate to" destination, configure the desired replication frequency and click Add.
The Wasabi-replication storage destination is added to the Replication target.
Click Save to save the policy.
The Policies page lists the polices depicting the different protection flows.Assigning policies to the VMs
To assign the policies to the VMs, navigate to the Protection tab on the left hand side of the portal.
Select the required VMs and click Assign policy.
Select the desired policy and click Save.
The backups will now be saved in the bucket specified in the Storage destination configured.
Enable Wasabi's object lock bucket for ShadowXafe backups
The section below outlines how to configure Wasabi's Immutable object lock feature for ShadowXafe backups. To protect the backups from ransomware events, this implementation utilizes the object lock capabilities offered by Wasabi, which means the Compliance mode setting and the required retention periods will be set ONLY on Wasabi.
NOTE: StorageCraft ShadowXafe product line DOES NOT support S3 object lock API, Wasabi's object lock feature is leveraged to create an immutable backup.
To configure Wasabi's object lock enabled bucket for ShadowXafe backups, please follow the instructions below
Create an object lock enabled bucket. For more information click here
Configure the Object Lock mode and the required retention period by following the Steps 1-4 in the article - How do I set Object Lock Bucket Settings?
Login to the Onesystem. Follow steps in Configuring Wasabi as a Storage destination to add the object-locked enabled bucket as a storage target.
You are now ready to use this storage target in your Protection flows as outlined in the section Configuring Protection flows using policies. Please note to configure the Keep every snapshot(days) value higher than the retention period set in Wasabi bucket.