- Notes, cautions, and warnings
- Preface
- PowerProtect Data Manager for Virtual Machines Overview
- Enabling Virtual Machine Protection
- About asset sources, assets, and protection storage
- About vCenter server asset sources and virtual assets
- Prerequisites for discovering asset sources
- Enable an asset source
- Adding a vCenter Server asset source
- Protecting virtual machines in a VMware Site Recovery Manager environment
- VM Direct protection engine overview
- Requirements for an external VM Direct Engine
- Protection engine limitations
- Add a VM Direct Engine
- Additional VM Direct actions
- Transparent Snapshots Data Mover protection mechanism
- vSphere Installation Bundle for Transparent Snapshots Data Mover protection
- Install or update the vSphere Installation Bundle
- Disable or re-enable the vSphere Installation Bundle
- Supported versions of VIB and installing PowerProtect Data Manager update packages
- Migrating assets to use the Transparent Snapshots Data Mover
- Managing Virtual Machine Assets and Protection
- Protection policies for virtual machine protection
- Supported protection policy purposes
- Supported protection policy objectives
- Replication triggers
- Roadmap for planning a protection policy
- Before you add a protection policy for virtual machine protection
- Add a protection policy for virtual machine protection
- Add a service-level agreement
- Managing virtual machine backups
- View available backup copies
- Copy Management
- Add and remove the credentials for virtual machine assets
- Add or remove assets in a protection policy
- Enable or disable Changed Block Tracking (CBT)
- Edit the retention period for asset copies
- Delete virtual machine backup copies
- Snapshot freeze scripts and thaw scripts for virtual machine backups
- Extended retention for protection policies
- Protection rules
- Creating tags in the vSphere Client for virtual machine protection policy rules
- Add a protection rule
- Manually run a protection rule
- Edit or delete a protection rule
- View assets applied to a protection rule
- Change the priority of an existing protection rule
- Move assets across policies using protection rules
- Configure protection rule behavior
- Protection policies for virtual machine protection
- Restoring Virtual Machine Data and Assets
- Prerequisites to restore a virtual machine
- Self-service restores
- View available backup copies for restore
- Restoring a virtual machine or virtual machine disk
- Restoring a virtual machine backup with the storage policy association
- Image-level restores
- Instant Access virtual machine restore
- File-level restores
- File-level restore to the original virtual machine
- File-level restore to alternate virtual machine
- Virtual machine file-level restore from a search
- File level restore as a domain user
- Manually install the VM Direct agent on Linux as a root user from the command line
- Manually install the VM Direct agent on Linux as a non-root user from the command line
- Manually install the VM Direct agent on Windows from the command line
- Restore an application-aware virtual machine backup
- Quick recovery for server DR
- Restore plans
- Protecting Virtual Machines Using the Transparent Snapshots Data Mover
- Overview of Transparent Snapshots Data Mover
- vSphere Installation Bundle monitoring and management
- Transparent snapshots data mover system requirements
- Prerequisites to virtual machine protection with the Transparent Snapshots Data Mover
- Transparent Snapshots Data Mover unsupported features and limitations
- Transparent Snapshots Data Mover performance and scalability
- PowerProtect Functionality Within the vSphere Client
- PowerProtect functionality within the vSphere Client
- Overview of the PowerProtect plug-in for the vSphere Client
- vSphere Client PowerProtect plug-in requirements
- Monitor PowerProtect Data Manager virtual machine protection copies
- Perform a manual PowerProtect-policy backup in the vSphere Client
- Perform an image-level restore of a PowerProtect backup in the vSphere Client
- File-level restores of a PowerProtect backup in the vSphere Client
- Overview of VASA and VMware Storage Policy Based Management
- VMware Cloud (VMC) on Amazon Web Services (AWS)
- PowerProtect Data Manager image backup and recovery
- VMware Cloud on Dell
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- Configuring the VMC-on-AWS portal
- Interoperability with PowerProtect Data Manager features
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Add a VM Direct Engine
- Unsupported operations
- Azure VMware Solution (AVS) on Microsoft Azure
- PowerProtect Data Manager image backup and recovery
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- Configuring the AVS-on-Azure portal
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Add a VM Direct Engine
- Unsupported operations
- Google Cloud VMware Engine (GCVE) on Google Cloud Platform (GCP)
- PowerProtect Data Manager image backup and recovery
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- Configuring the GCVE-on-GCP portal
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Add a VM Direct Engine
- Unsupported operations
- Oracle VMware Cloud Solution (OCVS) on Oracle Cloud Infrastructure (OCI)
- PowerProtect Data Manager image backup and recovery
- Supported PowerProtect Data Manager and DDVE deployment configurations
- Deployment and configuration best practices and requirements
- vCenter server inventory requirements
- Creating a dedicated cloud-based vCenter user account
- Protection mechanisms
- Supported operations
- Unsupported operations
- Backing Up and Recovering a vCenter Server
- Backing up and recovering a vCenter server
- vCenter deployments overview
- Protecting an embedded PSC
- Protecting external deployment models
- vCenter Server Appliance with one external PSC where PSC fails
- vCenter Server Appliance is lost but the PSC remains
- vCenter Server Appliance with multiple PSCs where one PSC is lost but one remains
- vCenter Server Appliance remains but all PSCs fail
- vCenter Server Appliance remains but multiple PSCs fail
- vCenter Server Appliance fails
- vCenter server restore workflow
- Platform Services Controller restore workflow
- Additional considerations
- Command reference
- Backing Up VMware Cloud Foundation (VCF) on VxRail
- Backing up VCF on VxRail
- VCF and VxRail overview
- VCF components and backup methods
- Check VMware certification
- Backup prerequisites
- The backup script
- Quick protection
- Selective protection: SDDC and NSX-T Managers
- Selective protection: vCenter servers
- Selective protection: vRSLCM, VxRail Manager, Workspace ONE Access, and vRealize Suite virtual machines
- SFTP password change: SDDC and NSX-T Managers
- SFTP password change: vCenter servers
- Backup-script troubleshooting
- Virtual Machine Best Practices
- Software and hardware requirements
- Scalability limits for vCenter server, VM Direct Engine, and DD systems
- PowerProtect Data Manager resource requirements in a VMware environment
- Best practices and additional considerations for the VM Direct Engine
- VM Direct Engine performance and scalability
- Transport mode considerations
- Change the limit of instant access sessions
- Configuring a backup to support vSAN datastores
- Configuration checklist for common issues
- Adjust the VMDM connection timeout and read timeout default values when network latency issues occur
- Steps required prior to updating to PowerProtect Data Manager 19.13 and later when VMDM is running with increased heap memory
- Disable vCenter SSL certificate validation
- Uninstalling the VM Direct agent
- Updating the Microsoft Application Agent and VM Direct agent software
- Supported file-level restore platforms and OS versions
- File-level restore and SQL restore requirements and limitations
- Virtual disk types not supported
- Virtual machine data change rate
- VM Direct Engine data ingestion rate
- VM Direct Engine limitations and unsupported features
- VM Direct Engine selection with virtual networks (VLANs)
- Deploying a VM Direct Engine to a datastore cluster is unsupported
- Best practices for vCenter server backup and restore
- Changing the vCenter server FQDN
- Replacing security certificates
- Support for backup and restore of encrypted virtual machines
- Virtual Machine Troubleshooting
- Troubleshooting installation and operation
- Troubleshooting network setup issues
- Troubleshooting virtual machine storage-policy changes
- Troubleshooting virtual machine backup issues
- Backup completes with a non-quiesced snapshot warning
- Backup fails when names include special characters
- Backup fails with an ABV0006 error
- Deleting vCenter asset sources or moving ESXi to another vCenter server
- Failed to lock virtual machine for backup: Another vProxy operation 'Backup' is active on VM
- Lock placed on virtual machine during backup and recovery operations continues for 24 hours if VM Direct Engine fails
- Managing command execution for VM Direct agent operations on Linux
- PowerProtect plug-in and portlet for vSphere display errors after replacing security certificates
- SQL Server application-consistent backups fail with error "Unable to find VSS metadata files in directory"
- TSDM backup fails with an ABV0016 error
- Troubleshooting virtual machine restore issues
- Troubleshoot virtual machine SQL application consistent policy issues
- Troubleshooting vSphere Plugin deployments
- VMware knowledge base articles and product documentation
- Glossary
PowerProtect Data Manager 19.16 Virtual Machine User Guide
Select protection policy assets
On the Assets page, click + Add to select the unprotected assets that you want to add to the backup of this protection policy.
Steps
- Choose one of the following view options, and then click
+ Add to select the assets for inclusion in this policy.
NOTE:To view only unprotected assets in the Add Assets dialog, make sure that Show only unprotected assets is selected.
- Tree view(
)—This view shows the hierarchical relationships of a specific host, and enables you to select individual assets or a group of assets at the host or container level for policy inclusion. For example:
Option Notes Select a stand-alone host to include all assets under this host. If you select a host in a cluster, no assets are selected. For a host in a cluster, ensure that you select the cluster or other containers (for example, a resource pool or vApp) under the cluster host. Expand the tree and select a container level in the vCenter hierarchy (for example, the data center, cluster, host, or resource pool) to include all assets under that level. When you expand the tree view, you can see all the assets within a host. When you select a host or container, all the contained assets and objects are also selected. You can also select individual assets or a group of assets within the host or container to include in the protection policy. If assets at any level are protected by another policy, a label with the name of that policy appears next to the level.
The following types of virtual assets are saved in
PowerProtect Data Manager but excluded from protection:
- VMProductType.DDVE - DD Virtual Edition
- VMProductType.VPROXY - VM Direct protection engine
- VMProductType.ECDM
- VMProductType.VIRTUAL_HOST - Nested_ESXi appliance
- VMProductType.REPORT - PowerProtect Data Managerreporting engine appliance
- VMProductType.SEARCH - PowerProtect Data ManagerSearch Engine appliance
- VMProductType.VRPA - RecoverPoint for VMs
icon appears next to the selection, indicating that Dynamic protection is enabled by default. When dynamic protection is enabled, a dynamic protection rule is automatically created to ensure that all the selected assets within the selected host or container are dynamically protected by the protection policy, even if changes occur from movements within the vSphere environment or the names of resource pools or folders change.
PowerProtect Data Manager manages the protection rule. The rule is updated automatically when you edit the policy and make changes to the container selections, or when assets are moved into or out of a selected container.
With dynamic protection, any new assets that you add to this folder or container after the policy is created or edited will be automatically added to the protection policy. Any assets that you remove from the folder or container are also removed from the policy. When any selection overlap occurs between different policies, the UI displays the overlaps and helps you to resolve the asset assignment conflicts by adjusting the protection rules' priority.
To disable the dynamic protection for a container, click
and then click
Disable in the displayed text box. When the dynamic protection is disabled, the protection policy does not dynamically protect the selected container and its objects. As a result, all the selected objects within the container become static selections that are not automatically protected by the policy.
After you create or edit a protection policy that has dynamic protection, you can select
to see the protection rule details for the protection policy, including the priority of the protection rule. The name in the
Protection Rule Name column for this new rule matches the policy name. Dynamic protection rules apply only at the container level.
NOTE:The behavior of automatic rule creation that allows assets to move into or out of policies can only be modified in the REST API. After updating from a previous release, if the tree view is not visible, you can enable this view by manually changing the /api/v2/common-settings/DYNAMIC_FILTER_SETTING. The PowerProtect Data Manager Public REST API documentation provides instructions.Expand the tree and select individual assets within containers. When you select individual assets within this view, these selections are considered static, and no protection rule is automatically created. In cases where protection rules result in assets moving from one policy to another, any assets that are manually selected for inclusion in the policy will not be moved to a different policy. - List view—This view enables you to see all unprotected assets within a table, and then select individual unprotected assets that you want to include in the protection policy.
NOTE:Only the tree view shows assets that are protected based on protection rules. To view assets that are protected with protection rules, switch from list view to tree view.
In cases where protection rules result in assets moving from one policy to another, any assets that are manually selected for inclusion in the policy will not be moved to a different policy.
When you select a virtual machine asset in this view, a dialog displays indicating that you can exclude virtual disks (VMDKs) from protection of these assets. To dismiss the dialog for other selections, select the checkbox and click OK.
Both views provide additional information about the virtual machines, such as any currently associated tags, protection rules, and whether the virtual machine is already assigned to another policy, to help you identify which assets you want to add. If the virtual machines that you want to protect are not listed, use the Search box to search by asset name.NOTE:When you configure a virtual machine application-aware protection policy to protect a Microsoft SQL Server Always On availability group (AAG), you must add all the virtual machines for that AAG to the same policy, to ensure proper protection. Failure to do so might result in missed transaction log backups.For the virtual machine application-aware case, the Assets page displays a warning about the AAG policy configuration requirement. - Tree view(
- Optionally, to exclude nonproduction VMDKs such as network shares or test disks from a protection policy:
- Select the virtual machine asset from the list, and then click
Manage Exclusions in the
Disk Excluded column.
The Exclude Disks dialog box appears. By default, the slider next to each VMDK is set to Included.
- For each disk that you want to exclude, move the slider to the right.
The status updates to Excluded.
- Click
Save.
The Assets page updates to indicate the number of disks for that particular asset that will be excluded from the protection policy.
- Select the virtual machine asset from the list, and then click
Manage Exclusions in the
Disk Excluded column.
- Click
Next.
If the Assets page included any asset assignment conflicts with other protection policies, a notification page appears that describes the assets that are already assigned to other protection policies:
- To continue, click OK.
- To return to the Assets page, click Cancel.
- To exclude any of these assets from this policy, unselect the assets, and then click OK.
When you click OK, the Check conflicts due to rule priority page appears, displaying the assets with conflicting assignments and their protection policies and rules. Conflict can occur, for example, when two policies (the new policy and an existing policy) use the tree view for asset selection by container level.- In the
Protection Rules pane, click the up and down arrows to change the protection rule priority of any policy.
When you raise the rule priority for a policy, the assets with conflicts in a lower-priority policy are moved to the policy with the higher protection rule priority.
- Click Next.
Results
For exclusion policies, the wizard moves to the Summary page. Continue to Review the protection policy summary.
For all other policy purposes, the wizard moves to the Objectives page. Continue to Add protection policy objectives.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\