- Notes, cautions, and warnings
- Preface
- PowerProtect Data Manager for Virtual Machines Overview
- Enabling Virtual Machine Protection
- About asset sources, assets, and protection storage
- About vCenter server asset sources and virtual assets
- Prerequisites for discovering asset sources
- Enable an asset source
- Adding a vCenter Server asset source
- Protecting virtual machines in a VMware Site Recovery Manager environment
- VM Direct protection engine overview
- Requirements for an external VM Direct Engine
- Protection engine limitations
- Add a VM Direct Engine
- Additional VM Direct actions
- Transparent Snapshots Data Mover protection mechanism
- vSphere Installation Bundle for Transparent Snapshots Data Mover protection
- Install or update the vSphere Installation Bundle
- Disable or re-enable the vSphere Installation Bundle
- Supported versions of VIB and installing PowerProtect Data Manager update packages
- Migrating assets to use the Transparent Snapshots Data Mover
- Managing Virtual Machine Assets and Protection
- Protection policies for virtual machine protection
- Supported protection policy purposes
- Supported protection policy objectives
- Replication triggers
- Roadmap for planning a protection policy
- Before you add a protection policy for virtual machine protection
- Add a protection policy for virtual machine protection
- Add a service-level agreement
- Managing virtual machine backups
- View available backup copies
- Copy Management
- Add and remove the credentials for virtual machine assets
- Add or remove assets in a protection policy
- Enable or disable Changed Block Tracking (CBT)
- Edit the retention period for asset copies
- Delete virtual machine backup copies
- Snapshot freeze scripts and thaw scripts for virtual machine backups
- Extended retention for protection policies
- Protection rules
- Creating tags in the vSphere Client for virtual machine protection policy rules
- Add a protection rule
- Manually run a protection rule
- Edit or delete a protection rule
- View assets applied to a protection rule
- Change the priority of an existing protection rule
- Move assets across policies using protection rules
- Configure protection rule behavior
- Protection policies for virtual machine protection
- Restoring Virtual Machine Data and Assets
- Prerequisites to restore a virtual machine
- Self-service restores
- View available backup copies for restore
- Restoring a virtual machine or virtual machine disk
- Restoring a virtual machine backup with the storage policy association
- Image-level restores
- Instant Access virtual machine restore
- File-level restores
- File-level restore to the original virtual machine
- File-level restore to alternate virtual machine
- Virtual machine file-level restore from a search
- File level restore as a domain user
- Manually install the VM Direct agent on Linux as a root user from the command line
- Manually install the VM Direct agent on Linux as a non-root user from the command line
- Manually install the VM Direct agent on Windows from the command line
- Restore an application-aware virtual machine backup
- Quick recovery for server DR
- Restore plans
- Protecting Virtual Machines Using the Transparent Snapshots Data Mover
- Overview of Transparent Snapshots Data Mover
- vSphere Installation Bundle monitoring and management
- Transparent snapshots data mover system requirements
- Prerequisites to virtual machine protection with the Transparent Snapshots Data Mover
- Transparent Snapshots Data Mover unsupported features and limitations
- Transparent Snapshots Data Mover performance and scalability
- PowerProtect Functionality Within the vSphere Client
- PowerProtect functionality within the vSphere Client
- Overview of the PowerProtect plug-in for the vSphere Client
- vSphere Client PowerProtect plug-in requirements
- Monitor PowerProtect Data Manager virtual machine protection copies
- Perform a manual PowerProtect-policy backup in the vSphere Client
- Perform an image-level restore of a PowerProtect backup in the vSphere Client
- File-level restores of a PowerProtect backup in the vSphere Client
- Overview of VASA and VMware Storage Policy Based Management
- VMware Cloud (VMC) on Amazon Web Services (AWS)
- PowerProtect Data Manager image backup and recovery
- VMware Cloud on Dell
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- Configuring the VMC-on-AWS portal
- Interoperability with PowerProtect Data Manager features
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Add a VM Direct Engine
- Unsupported operations
- Azure VMware Solution (AVS) on Microsoft Azure
- PowerProtect Data Manager image backup and recovery
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- Configuring the AVS-on-Azure portal
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Add a VM Direct Engine
- Unsupported operations
- Google Cloud VMware Engine (GCVE) on Google Cloud Platform (GCP)
- PowerProtect Data Manager image backup and recovery
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- Configuring the GCVE-on-GCP portal
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Add a VM Direct Engine
- Unsupported operations
- Oracle VMware Cloud Solution (OCVS) on Oracle Cloud Infrastructure (OCI)
- PowerProtect Data Manager image backup and recovery
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Protection mechanisms
- Supported operations
- Unsupported operations
- Backing Up and Recovering a vCenter Server
- Backing up and recovering a vCenter server
- vCenter deployments overview
- Protecting an embedded PSC
- Protecting external deployment models
- vCenter Server Appliance with one external PSC where PSC fails
- vCenter Server Appliance is lost but the PSC remains
- vCenter Server Appliance with multiple PSCs where one PSC is lost but one remains
- vCenter Server Appliance remains but all PSCs fail
- vCenter Server Appliance remains but multiple PSCs fail
- vCenter Server Appliance fails
- vCenter server restore workflow
- Platform Services Controller restore workflow
- Additional considerations
- Command reference
- Backing Up VMware Cloud Foundation (VCF) on VxRail
- Backing up VCF on VxRail
- VCF and VxRail overview
- VCF components and backup methods
- Check VMware certification
- Backup prerequisites
- The backup script
- Quick protection
- Selective protection: SDDC and NSX-T Managers
- Selective protection: vCenter servers
- Selective protection: vRSLCM, VxRail Manager, Workspace ONE Access, and vRealize Suite virtual machines
- SFTP password change: SDDC and NSX-T Managers
- SFTP password change: vCenter servers
- Backup-script troubleshooting
- Virtual Machine Best Practices
- Software and hardware requirements
- Scalability limits for vCenter server, VM Direct Engine, and DD systems
- PowerProtect Data Manager resource requirements in a VMware environment
- Best practices and additional considerations for the VM Direct Engine
- VM Direct Engine performance and scalability
- Transport mode considerations
- Change the limit of instant access sessions
- Configuring a backup to support vSAN datastores
- Configuration checklist for common issues
- Adjust the VMDM connection timeout and read timeout default values when network latency issues occur
- Steps required prior to updating to PowerProtect Data Manager 19.13 and later when VMDM is running with increased heap memory
- Disable vCenter SSL certificate validation
- Uninstalling the VM Direct agent
- Updating the Microsoft Application Agent and VM Direct agent software
- Supported file-level restore platforms and OS versions
- File-level restore and SQL restore requirements and limitations
- Virtual disk types not supported
- Virtual machine data change rate
- VM Direct Engine data ingestion rate
- VM Direct Engine limitations and unsupported features
- VM Direct Engine selection with virtual networks (VLANs)
- Deploying a VM Direct Engine to a datastore cluster is unsupported
- Best practices for vCenter server backup and restore
- Changing the vCenter server FQDN
- Replacing security certificates
- Support for backup and restore of encrypted virtual machines
- Virtual Machine Troubleshooting
- Troubleshooting installation and operation
- Troubleshooting network setup issues
- Troubleshooting virtual machine storage-policy changes
- Troubleshooting virtual machine backup issues
- Backup completes with a non-quiesced snapshot warning
- Backup fails when names include special characters
- Backup fails with an ABV0006 error
- Deleting vCenter asset sources or moving ESXi to another vCenter server
- Failed to lock virtual machine for backup: Another vProxy operation 'Backup' is active on VM
- Lock placed on virtual machine during backup and recovery operations continues for 24 hours if VM Direct Engine fails
- Managing command execution for VM Direct agent operations on Linux
- PowerProtect plug-in and portlet for vSphere display errors after replacing security certificates
- SQL Server application-consistent backups fail with error "Unable to find VSS metadata files in directory"
- TSDM backup fails with an ABV0016 error
- Troubleshooting virtual machine restore issues
- Troubleshoot virtual machine SQL application consistent policy issues
- Troubleshooting vSphere Plugin deployments
- VMware knowledge base articles and product documentation
- Glossary
PowerProtect Data Manager 19.16 Virtual Machine User Guide
Add a service-level agreement
SLA Compliance in the PowerProtect Data Manager UI enables you to add a service-level agreement (SLA) that identifies your service-level objectives (SLOs). You use the SLOs to verify that your protected assets are meeting the service-level agreements (SLAs).
About this task
NOTE:When you create an SLA for
Cloud Tier, you can include only full backups in the SLA.
NOTE:The
Extended Retention objective was removed in
PowerProtect Data Manager 19.12. Protection policies that were created in earlier releases with the
Extended Retention SLA are unsupported in releases 19.15 and later. The Dell Knowledge Base article
KB204454 provides more information about migrating these policies.
In the SLA Compliance window, you can export compliance data by using the Export All functionality.
Steps
- From the
PowerProtect Data Manager UI, select
.
The SLA Compliance window appears.
- Click
Add or, if the assets that you want to apply the SLA to are listed, select these assets and then click
Add.
The Add Service Level Agreement wizard appears.
- Select the type of SLA that you want to add, and then click
Next.
- Policy. If you choose this type, go to step 4.
- Backup. If you choose this type, go to step 5.
- Replication. If you choose this type, go to step 6.
- Cloud Tier. If you choose this type, go to step 7.
You can select only one type of Service Level Agreement. - If you select
Policy, specify the following fields regarding the purpose of the new Policy SLA:
- The SLA Name.
- If applicable, select Minimum Copies, and then specify the number of Backup, Replication, and Cloud Tier copies.
- If applicable, select Maximum Copies, and then specify the number of Backup, Replication, and Cloud Tier copies.
- If applicable, select
Available Location and then select the applicable locations. To add a location, click
Add Location.
Options include the following:
- In—Include locations of all copies in the SLO locations. Selecting this option does not require every SLO location to have a copy.
- Must In—Include locations of all copies in the SLO locations. Selecting this option requires every SLO location to have at least one copy.
- Exclude—Locations of all copies must be non-SLO locations.
NOTE:Policy files backed up on a storage unit with indefinite retention hold (IRH) enabled cannot be deleted or modified, even after retention lock expiry. It is recommended that you do not select the Maximum Copies option, because it conflicts with IRH. Otherwise, the SLA does not complete successfully when the number of copies exceeds the specified number. - If applicable, select Allowed in Cloud through Cloud Tier/Cloud DR.
- Click Finish, and then go to step 9.
- If you select
Backup, specify the following fields regarding the purpose of the new
Backup SLA:
- The SLA Name.
- If applicable, select
Recovery Point Objective required (RPO), and then set the duration. The purpose of an RPO is business continuity planning. It indicates the maximum targeted period in which data (transactions) might be lost from an IT service due to a major incident.
NOTE:You can select only Recovery Point Objective required to configure as an independent objective in the SLA, or select both Recovery Point Objective required and Compliance Window for copy type. If you select both, the RPO setting must be one of the following:
- Greater than 24 hours or more than the Compliance window duration, in which case RPO validation occurs independent of the Compliance Window.
- Less than or equal to the Compliance Window duration, in which case RPO validation occurs within the Compliance Window.
- If applicable, select
Compliance Window for copy type, and then select a schedule level from the list, for example,
All,
Full,
Cumulative, and then set the duration.
Duration indicates the amount of time necessary to create the backup copy. Ensure that the
Start Time and
End Time of backup copy creation falls within the Compliance Window duration specified.
This window specifies the time during which you expect the specified activity to take place. Any specified activity that occurs outside of this Start Time and End Time triggers an alert.
- If applicable, select
Verify expired copies are deleted.
Verify expired copies are deleted is a compliance check to see if PowerProtect Data Manager is deleting expired copies. This option is disabled by default.NOTE:Data that is backed up on a storage unit with IRH enabled cannot be deleted or modified, even after retention lock expiry. It is recommended that you do not select Verify expired copies are deleted, because it conflicts with IRH. Otherwise, the SLA does not complete successfully.
- If applicable, select
Retention Time Objective, and then specify the number of Days, Months, Weeks, or Years.
NOTE:The value of Retention Time Objective must match the lowest retention value of the backup levels of the target objectives of this policy. For example, if the synthetic full backup Retain For is 30 days but the full backup Retain For is 60 days, set the Retention Time Objective to 30 days.
- If applicable, select
Verify Retention Lock is enabled for all copies.
Verify Retention Lock is enabled for all copies is a compliance check to see if PowerProtect Data Manager is using retention locking. This option is disabled by default.
- Click
Finish, and then go to step 9.
The SLA Compliance window appears with the new SLA.
- If you select
Replication, specify the following fields regarding the purpose of the new Replication SLA:
- The SLA Name.
- If applicable, select the
Compliance Window, and then specify the
Start Time and
End Time.
This window specifies the times that are permissible and during which you can expect the specified activity to occur. Any specified activity that occurs outside of this start time and end time triggers an alert.
- If applicable, select
Verify expired copies are deleted.
Verify expired copies are deleted is a compliance check to see if PowerProtect Data Manager is deleting expired copies. This option is disabled by default.NOTE:Data that is replicated on a storage unit with IRH enabled cannot be deleted or modified, even after retention lock expiry. It is recommended that you do not select Verify expired copies are deleted, because it conflicts with IRH. Otherwise, the SLA does not complete successfully.
- If applicable, select
Retention Time Objective, and then specify the number of Days, Months, Weeks, or Years.
NOTE:Set the value of Retention Time Objective to match the lowest retention value of the backup levels of the target objectives of this policy.
- If applicable, select
Verify Retention Lock is enabled for all copies.
Verify Retention Lock is enabled for all copies is a compliance check to see if PowerProtect Data Manager is using retention locking. This option is disabled by default.
- Click
Finish, and then go to step 9.
The SLA Compliance window appears with the newly added SLA.
- If you select
Cloud Tier type SLA, specify the following fields regarding the purpose of the new
Cloud Tier SLA:
- The SLA Name.
- If applicable, select
Verify expired copies are deleted.
This option is a compliance check to determine if PowerProtect Data Manager is deleting expired copies. This option is disabled by default.
- If applicable, select
Retention Time Objective and specify the number of Days, Months, Weeks, or Years.
NOTE:Set the value of Retention Time Objective to match the lowest retention value of the backup levels of the target objectives of this policy.
- If applicable, select
Verify Retention Lock is enabled for all copies.
Verify Retention Lock is enabled for all copies is a compliance check to see if PowerProtect Data Manager is using retention locking. This option is disabled by default.
- Click Finish.
- If the SLA has not already been applied to a protection policy:
- Go to .
- Select the policy, and then click Edit.
- In the Objectives row of the Summary window, click Edit.
- Do one of the following, and then click
Next:
- Select the added Policy SLA from the Set Policy Level SLA list.
- Create and add the SLA policy from the Set Policy Level SLA list.
The Summary window appears. - Click
Finish.
An informational message appears to confirm that PowerProtect Data Manager has saved the protection policy.
- Click
Go to Jobs to open the
Jobs window to monitor the backup and compliance results, or click
OK to exit.
NOTE:Compliance checks occur automatically every day at 2 a.m. Coordinated Universal Time (UTC). If any objectives are out of compliance, an alert is generated at 2 a.m. UTC. The Validate job in the System Jobs window indicates the results of the daily compliance check.
For a backup SLA with a required RPO setting that is less than 24 hours, PowerProtect Data Manager performs real-time compliance checks. If you select Compliance Window for copy type and set the backup level to All, the real-time compliance check occurs every 15 minutes only within the compliance window. If the backup level is not All, or if a compliance window is not specified, the real-time compliance check occurs every 15 minutes without stop.
NOTE:If the backup SLA has a required RPO setting of 24 hours or greater, compliance checks occur daily at 2 a.m. UTC. Real-time compliance checks do not occur for backup SLAs with an RPO setting of 24 hours or greater.Real-time compliance-check behavior
If the asset was not backed up within the RPO backup interval requirement, an alert indicates that the RPO of the asset is out of compliance. This alert is generated once within an RPO period. If the same backup copy is missed when the next compliance check occurs, no further alerts are generated.
If the asset was backed up within the RPO backup interval requirement, the RPO of the asset is in compliance.
If multiple assets in a policy are out of compliance, a single alert is generated. This alert includes information for all the assets in the policy. In the Alerts window, the asset count next to the alert summary indicates the number of assets that are out of compliance in the policy.
- In the
Jobs window, click
next to an entry to view details on the SLA Compliance result.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\