AVS MABS Backup Server

00:00

hello and welcome to my Azure quick Hits

00:02

video series

00:04

today I'm going to show you how to

00:05

configure the Microsoft Azure backup

00:07

server so that it can be used to backup

00:09

and restore workloads from AVS so our

00:12

lab looks like an AVS environment with

00:14

two machines that we're going to back up

00:15

mg server one and O2 it's connected

00:18

through express route to a vwan hub

00:19

there's actually two hubs in this VM

00:22

we're only worried about the one in the

00:23

lower one here the West us

00:25

and then we have two peered v-nets one

00:28

has a domain controller in it and the

00:29

other one has the backup server and then

00:31

finally we have a Recovery Services

00:33

Vault here that's going to be a dotted

00:35

line connection to

00:37

the map server right and that's where

00:39

we're going to put our long-term storage

00:40

I have pre-created a server called the

00:43

AVS Azure backup server that we just saw

00:45

in the diagram

00:47

and one of the first tasks you need to

00:49

do is decide how much disk you need for

00:51

the short-term storage this is five to

00:53

seven days of online storage that's

00:56

going to be maintained in the AVS backup

00:58

server

01:00

so there is a tool that's linked in the

01:02

comments to calculate how big that disk

01:04

should be so for our test we're just

01:07

going to add a simple disk I'm going to

01:09

call it backup disk the guidance in the

01:11

in the documentation is to choose

01:13

standard click on Save now when I RDP

01:15

into that machine click on the start

01:17

menu click on disk

01:19

and click on create format hard disk

01:21

partitions

01:24

and if we scroll down a little bit we're

01:26

going to see that Ford byte disk and

01:28

we're going to go new simple volume

01:30

next next

01:36

finish

01:38

and we now have a new

01:41

three or four gig 3.98 gigabyte volume

01:44

available to us

01:45

so now we've got our disks available the

01:47

next thing we need to do is configure a

01:49

Recovery Services Vault so let's go back

01:52

to the portal and I've actually got mine

01:54

here but I'll show you how easy it is to

01:55

create this literally click on create

01:57

choose the resource Group you want

02:01

make sure it's in the same region as the

02:03

AVS environment you don't want to be

02:05

sending backups to the backup server

02:06

inter-regionally

02:07

and then name your vault

02:10

and then just click review and create

02:12

and that's it

02:15

so ours is called AVS Recovery Services

02:18

fault now we've created The Vault click

02:20

on it open the vault and select backup

02:23

where is your workload running we're

02:24

going to choose on-premises and we're

02:27

going to choose

02:28

VMware virtual machine

02:32

prepare infrastructure and at this point

02:34

it gives us the option to download the

02:36

Azure backup server so click on download

02:38

and then click on download again once

02:40

this web page launches

02:43

and then we're going to choose all the

02:45

files we want to download everything and

02:46

once this is complete we'll continue

02:49

so I'm going to open my downloads folder

02:52

I can close this tab now

02:55

and then from the downloads folder I'm

02:57

going to run the application the

02:58

installer

03:00

all right click next

03:02

I accept the agreement click next that

03:05

sounds good

03:07

and then extract

03:09

and once that's finished click finish

03:10

now before we do anything else we need

03:13

to go to server manager

03:14

and install the.net 3.5 Suite

03:20

open up server manager

03:23

add roles and features

03:25

next next next

03:31

there we go next

03:35

install

03:42

and then once that finishes you can

03:44

click close

03:45

doesn't require a server reboot and then

03:48

close server manager now choose your C

03:50

drive

03:51

go to system center Microsoft Azure

03:53

backup server click again

03:56

and come down until we find the setup

03:58

program

03:59

I'm going to choose Azure backup server

04:01

and wait while this extracts on the

04:04

welcome screen we'll click next

04:07

complete the check to make sure we meet

04:09

the basic requirements

04:11

install a new instance of SQL of course

04:13

you can use your own if you want do a

04:16

check and install

04:18

and we actually have an error message

04:20

saying Powershell has to be installed we

04:23

just need to restart the computer

04:24

so restart and run the application again

04:27

okay let's do that

04:29

okay we're back so I'm going to run

04:31

setup again

04:32

and I'm going to zoom through this bit

04:38

all right let's try that check and

04:39

install again

04:45

looks good

04:47

so I'm going to accept the defaults

04:51

password for the SQL

04:59

I will use Microsoft updates

05:02

and click install

05:06

so I don't have a proxy so I'll click

05:08

next

05:12

install

05:17

all right we're complete it says Azure

05:20

recovery service agent has been

05:21

installed click next to register the

05:23

server with the Azure backup Vault so

05:25

we're going to click next all right and

05:26

when that's done we're going to be asked

05:28

for the vault credentials so to find the

05:30

Vault credentials let's go back to the

05:32

Azure portal

05:33

and we're going to look for settings and

05:35

properties

05:37

and then in the bottom of this we're

05:39

going to see backup credentials already

05:41

used in the latest service Recovery

05:42

Agent which we are because we just

05:43

downloaded this

05:44

and then click on download

05:47

and that's going to download a file into

05:50

our downloads directory

05:52

so we know it's in the downloads

05:53

directory so we'll just minimize the

05:55

portal again we'll go browse

05:57

and we're going to choose downloads

06:01

and there's our credentials

06:06

and click next

06:08

so here we need a recovery passphrase

06:10

must be at least 16 characters long

06:15

and a location to store the passphrase

06:17

so I'm going to put it on the temp

06:18

directory but it's a good idea to have

06:20

it on a different server or stored in a

06:22

key vault

06:27

so it's going to be me warning about

06:29

that that's fine

06:31

so here the server is actually

06:32

contacting the recovery services vault

06:44

all right and it looks like we've

06:47

successfully completed this note that

06:50

you must restart the computer to

06:52

complete the DPM installation all right

06:54

let's do that

06:59

so now the service rebooted we've got an

07:01

icon on the desktop for Microsoft Azure

07:04

backup server so we'll start that

07:07

and the first thing to do is to click on

07:09

management and then click on disk

07:11

storage

07:12

and then do a rescan

07:15

nothing so we'll click on ADD

07:18

and here we're going to see our 4K

07:19

volume that we created

07:21

okay we get a message about dpml format

07:23

the volume that's fine

07:25

our friendly name is going to be

07:28

backup disk

07:33

and then once that's complete we're

07:35

going to see that as an available disk

07:37

for us

07:38

so the next step is to create a secure

07:40

connection to the vcenter server so to

07:42

do that we need to get to our browser

07:45

and we're going to type in the IP

07:46

address of the vcenter server right this

07:48

is the Azure sddc so in my case that's

07:50

going to be https

07:52

10.40.140.

07:57

now don't launch the vsphere client

07:59

because what we actually want is here

08:01

the downloaded root CA certificates and

08:03

if you click on that it downloads it

08:06

into the browser so if you right click

08:07

and click save as

08:10

and then you can put in

08:12

serts

08:14

or maybe just call it abs

08:16

erts save it and once that's done we can

08:19

open the folder and we're going to see

08:21

one called AVS certs here

08:23

open that up click on certs click on

08:25

Windows that's where the two

08:27

certificates are we can now close the

08:29

browser

08:31

so go back to the AVS certs folder sorry

08:34

one further to the AVS certs here right

08:37

click and say extract all

08:39

and we're going to put them in the

08:42

temp directory again

08:48

now if we go to the C colon temps

08:51

actually it does it for you you can

08:53

click on certs click on Windows

08:56

and you're going to see this top one is

08:57

the root cert ends with a DOT zero we

08:59

need to rename that remove the dot zero

09:02

and put in a CRT

09:05

once that's done we're going to right

09:07

click install certificate

09:10

click on open

09:11

click on local machine

09:13

next

09:15

place the certificate in the following

09:16

store

09:17

and choose the trusted root certificate

09:19

authorities

09:21

click next

09:23

click finish

09:25

and we will get a message saying the

09:26

import was successful

09:28

all right now we have to enable TLS on

09:30

the backup server and so to do that

09:34

it's pretty simple go to this URL it's

09:36

going to be in the comments section at

09:38

the bottom of the video and what we want

09:40

to do is copy this

09:41

put it into a notepad

09:46

and we're going to save it as tls.reg

09:53

and change this to all files

09:56

click on Save and just note it's being

09:58

put in the documents folder here

10:01

so now if we open up

10:04

file explorer again

10:06

and we go to the documents folder

10:08

we're going to see this TLS reg and then

10:11

just double click on it

10:13

and then it's going to give you a

10:14

warning message and you say yes it'll

10:17

give you a message saying it has been

10:18

successfully merged with a registry and

10:20

that's going to enable that TLS 1.2 for

10:22

us

10:23

so now we can close this

10:25

close this and return to the Azure

10:29

backup server click on the production

10:30

servers and select manage VMware

10:36

add credentials so the credential name

10:39

is going to be

10:41

AVS backup

10:45

description the uh backup account

10:52

the username is going to be

10:59

and the password is going to be

11:03

all right click on ADD

11:05

and then close the manage credentials

11:08

next we have to actually add a vcenter

11:10

server so make sure you're on the

11:11

management blade

11:13

click on Production Service click on ADD

11:15

choose VMware servers next

11:18

choose the server name IP address so

11:21

this is going to be in my case the

11:24

10.40.144.2 this is the IP of your

11:26

vcenter from the AVS sddc as shown and

11:30

then choose the credential

11:32

click on ADD

11:34

click next click add

11:37

and click close

11:40

and you can see here that the agent

11:42

status is okay so we've connected

11:45

successfully so that's the end of the

11:47

configuration in the next video I'm

11:49

going to show you how to use protection

11:51

recovery to actually protect your

11:52

workloads and then recover them

11:56

I hope you found this video helpful

11:57

please leave likes and comments below