Enterprise application integration for Oracle and SAP HANA

Source: Veeam

Thousands of organizations rely on Oracle and SAP HANA databases for their business-critical, production workloads every day. These enterprise applications power their daily business operations, so having a successful backup solution is mandatory! IDC reports that enterprise databases, including in-memory and relational databases, continue to hold popularity both on premises and in clouds, thus reflecting the importance of being able to reliably back these up like other workloads. Many of these enterprise organizations also run Veeam to back up many of their solutions and have been asking for a way to integrate the backup, replication and restore features of Veeam Availability Suite, into a solution that works for these Oracle and SAP HANA applications as well.

It just works… For Enterprise databases too!

Veeam has a reputation of delivering simple, reliable solutions that work for any app, any data and any cloud and we are now extending this promise to supporting Enterprise Applications!

Veeam is proud to announce that this integration with Veeam Backup & Replication is now a reality, enabling backups directly into Veeam repositories with Veeam Backup & Replication 9.5 Update 4 with Veeam Plug-in for Oracle and Veeam Plug-in for SAP HANA. This integration saves time and simplifies the overall management of backups for mission critical database solutions. Let’s dive into these benefits a bit further.

Business benefits

Database Administrators (DBAs) have been leveraging the native backup solutions offered by Oracle Recovery Manager (RMAN) and SAP HANA (BACKINT) to protect and manage backups of their mission critical workloads. These organizations can now save time and improve operational efficiencies with the Veeam Plug-in for Oracle and Veeam Plug-in for SAP HANA, which allows them to simplify management of even more workloads within the Veeam portal for a holistic view of all backups. This saves time while keeping the DBAs in control.

Veeam Plug-in for Oracle provides users with the ability to send Oracle RMAN backups to Veeam Backup & Replication repositories, including several benefits such as:

  • Direct Integration with Oracle RMAN
  • Backups to Veeam repositories for a single-pane-of-glass management view
  • Oracle DBAs can control backups and restores & non-Oracle DBAs can do restores with Veeam Explorer for Oracle

Veeam Plug-in for SAP HANA enables SAP HANA BACKINT backups to Veeam Backup & Replication repositories including the following feature benefits:

  • Direct integration with SAP HANA
  • Official SAP BACKINT Certified Solution
  • Backups to Veeam repositories for a single-pane-of-glass management view
  • Back up and restore with the native SAP HANA Database backup methods; Usage of SAP HANA Studio for Restores
  • Read more about the technical benefits of SAP HANA integration

Additionally, many of the powerful features of Veeam B&R are now available for these Oracle and SAP application backups including:

  • Enhanced backup capabilities like Instant VM recovery, advanced Compression and Deduplication & storage snapshots for faster recovery
  • High performance backup and replication with Scale-out Backup Repository
  • Deploy enterprise application test environments with Veeam DataLabs
  • And more!

Summary

Veeam is excited to continue raising the bar on many more features for customers large and small. These enterprise application plug-ins provide considerable value to customers who may be looking to consolidate management of backups into one location, or to customers who have been hesitant to adopt Veeam due to lack of integration with enterprise backup tools.

This enterprise application enhancement is just one of the exciting new features within Veeam Availability Suite 9.5 Update 4. Learn more about this and many other features in this update.

Reference:

  • IDC:  Data Integration and Integrity End User Survey 2017, IDC, November, 2017

The post Enterprise application integration for Oracle and SAP HANA appeared first on Veeam Software Official Blog.


Enterprise application integration for Oracle and SAP HANA

SAP HANA integrated backup is here!

Source: Veeam

SAP HANA is one of the most critical enterprise applications out there, and if you have worked with it, you know it likely runs part, if not all, of a business. In Veeam Availability Suite 9.5 Update 4, we are pleased to now have native, certified SAP support for backups and recoveries directly via backint.

What problem does it solve?

SAP HANA’s in-memory database platform also requires that a backup solution be integrated and aware of the platform. This SAP HANA support helps you to have certified solutions for SAP HANA backups, reduce impact of doing backups, ensure operational consistency for backups, and leverage all of the additional capabilities that Veeam Availability Suite has to offer. This also includes point-in-time restores, database integrity checks, storage efficiencies such as compression and deduplication as well.

This milestone comes after years of organizations wanting Veeam backups with their SAP installations. We spent many years advocating on backing up SAP with BRTOOLS and leveraging image-based backups as well to prepare for tests. Now, the story becomes even stronger with support for Veeam to drive backint backups from SAP and store them in a Veeam repository. Specifically, this means that a backint backup can happen for SAP HANA and Veeam can manage the storage of that backup. It is important to note now that the Veeam SAP Plug-In, which makes this native support work, is also supported for use with SAP HANA on Microsoft Azure.

How does it work?

The Veeam Plug-In for SAP HANA becomes a target available for native backups with SAP HANA Studio for backups of a few types: file-based backups, snapshots and backint backups. When backups are performed in SAP HANA Studio, a number of different types and targets can be selected. This is all native within the SAP HANA application and SAP HANA tools like SAP HANA Studio, SAP HANA Cockpit or SQL based command line entries. These include file backups (plain copies of files) and complete data backups using backint. Backint is an API framework that allows 3rd-party tools (such as Veeam) to directly connect the backup infrastructure to the SAP HANA database. The backint backup is configured to have a backup interval set in SAP HANA Studio, and that interval can be very small – such as 5 minutes. It is also recommended to do the backup with log backups (again, configured in SAP HANA Studio) to enable more granular restores which will be covered a bit later on.

SAP HANA can also call snapshots to its own application, while it does not have consistency or corruption checks – snapshots are a great addition to the overall backup strategy. By most common perspectives, backint is the best approach for backing up SAP HANA systems but using the snapshots can also add more options for recovery. The plug-in data flow for a backint backup as implemented in Veeam Availability Suite 9.5 Update 4 is shown in the figure below:

 

 

One of the key benefits of doing a backint backup of SAP HANA is that you can do direct restores to a specific point in time – either from snapshots or from the backint backups with point-in-time recovery. This is very important when considering how critical SAP HANA is to many organizations. So, when it comes to how often a backup is done, select the interval that works for your organization’s requirements and make sure the option to enable automatic log backup is selected as well.

Bring on the Enterprise applications!

Application support is a recent trend here at Veeam, and I do not expect this to slow down any time soon! The SAP HANA Plug-In support, along with the Oracle RMAN plug-in, are two big steps in bringing application support to Veeam for critical, enterprise applications. You can find more information on Veeam Availability Suite 9.5 Update 4 here.

The post SAP HANA integrated backup is here! appeared first on Veeam Software Official Blog.


SAP HANA integrated backup is here!

Veeam Instance Licensing changes everything, except price!

Source: Veeam

People value flexibility. We demand it! Our lives are busy, and we strive to keep things simple no matter where we are. Whether it’s how we shop, how we consume information or how we interact with friends and family, we expect that experience to be the same whether we’re at home or on the go. That’s the same for organizations who are growing and stretching their business-critical workloads across multiple environments and into the cloud. They need flexibility! They need a consistently reliable experience that does not incur penalties and doesn’t increase costs.

Veeam is stoked to introduce a new licensing solution that will provide a simple, flexible and cloud-ready licensing option that breaks down barriers for cloud adopters needing to back up and restore their valuable workloads. Veeam Instance Licensing (VIL) is the newest subscription licensing solution for Veeam products.

VIL is portable and can be used to protect various workloads across multiple Veeam products and can be used on premises, in the public cloud and anywhere in between.
Let’s first step back and discuss how this came about and why you should care.

Veeam 2019 – Extending leadership in cloud data management!

Organizations have various types of workloads ranging from virtual to physical, on-premises to cloud-native, and test/dev to production enterprise applications. Veeam has a portfolio of various products ready to support the total Availability of all these workloads, with backup and replication, monitoring, and much more. January 22nd marked a massive set of announcements from Veeam that extends our leadership in cloud data management. This announcement included Veeam Availability Suite 9.5 Update 4, Veeam Agents for Microsoft Windows and Linux v3, Veeam Availability for AWS and more. These releases were huge, adding many new cloud features furthering the capabilities that our customers demand. In fact, this was the biggest release in our history in terms of number of new features — check out the list for Veeam Backup & Replication 9.5 Update 4 alone here.

Workload diversification is on the rise

Organizations are moving rapidly toward an increasingly diverse set of workloads ranging from virtual to physical, on-premises to cloud-native, and test/dev to production enterprise applications. This workload diversity is fueled the most by the accelerating trend toward hybrid and multi-cloud adoption. Customers are adopting clouds in various ways in order to gain greater flexibility, cost savings and advanced functionality. These diverse configurations are contributing to challenges to how customers manage their traditional and cloud-native environments, and this applies directly to licensing as users are now facing a myriad of different licensing requirements. Different licenses for different workloads and for different products made for a licensing nightmare. Some licenses could be used for some things, but not others. Other licenses couldn’t be repurposed. Veeam is responding to this concern proactively with a solution that addresses licensing complexities to make the move to multi-cloud environments simple with VIL.

What is Veeam Instance Licensing?

VIL is the next generation of subscription licensing at Veeam, replacing the existing subscription licensing for most products. It’s a solution that can be used across different workloads and different Veeam products. These licenses are sold in pools of licenses, in bundles of 10. Customers use these instances to license the workloads that they need. Need to protect 3 VMs, 2 agent servers, and 2 cloud native workloads on AWS? No sweat! One bundle of VIL licenses can do this for you regardless of what Veeam product you choose for protecting your workload. No need to purchase “product-specific” licensing any longer.

You can probably already see how it solves some real challenges. For example, imagine you have a special VM that cannot be snapshot due to hypervisor limitation around its virtual hardware? No problem — you can just use Veeam Agent to protect this VM with agent-based backup, while processing the rest with host-based backups that Veeam Backup & Replication is so famous for — all from a single pool of licenses.

But, the best part is the portability! You can move these licenses to the workloads that you need, when your needs change, wherever your workload resides. Today, your SQL Server may be running on physical — but in a few months, you may virtualize it on VMware. And perhaps in a few months, you have plans to move it to the public cloud? No problem — the Veeam license will follow, regardless of what Veeam product you decided to use for protecting your on-prem VMs, physical servers, workstations, cloud IaaS VMs or enterprise applications. No longer will you be locked into licensing that is product or workload-specific.

Here at Veeam, we feel this portability is the right thing for the customer and we firmly believe this will make purchasing and managing licenses easier than ever. Fewer licensing headaches, greater flexibility, simplified ordering and management. That just makes sense!

Ok, but what is an Instance?

An Instance is our new unit of measurement for subscription licensing. Our most common use case is protecting a VM, and that will always utilize 1 Instance. In fact, most workloads require 1 Instance with our flagship Enterprise Plus edition, making everything super simple. Instead of metering licenses across various metrics such as per VM, per server, per workstation, per application, per user, per this and per that.. (Gosh, that’s exhausting!) we are standardizing on the license Instance as our unit of measure.

Just like our products, Instance licensing will be offered by edition. While this adds some complexity, this is a necessary evil to accommodate our existing 320K+ customer base using different product editions. However, for new purchases, you will find that Enterprise Plus edition is the best choice, because it provides more platform capabilities at the same price. This is due to how Instance pricing is structured, with MSRP for all workloads (except VMs) staying the same regardless of the edition.

It’s better to see something once than to hear about it a thousand times, right? Well, we have a nifty Instance configurator to help you figure out how many Instances you need. Check it out or contact your sales associate or your partner for assistance.

The. Price. Is. Not. Changing!

There must be some hitch here, right? Nope. The subscription pricing is not changing for any of our products. It costs the same to protect each particular workload as before — when we first introduced subscription licensing.

However, please remember that the Instances are sold by edition, and while lower editions may have increased “weightings” for certain workloads, this does not result in 2-3x the cost. Let’s take the Veeam Agent for Microsoft Windows server for example. No matter what edition you purchase, the cost to protect an Agent server is still $150 USD MSRP no matter what edition you choose. A Veeam Agent for Linux workstation is $50 MSRP regardless of edition. Same goes for Nutanix VMs which is $150 USD. Three standard Instances will protect one server and one Enterprise Plus Instance will protect one Server. The weighting per edition is different, but the price stays the same.

If you need various workload types to be centrally managed, we just require that you keep the edition the same across the single license file.

What else do you need to know?

  • Veeam Instance Licensing is available for several products and workloads, check out the list here. Is your product or workload not on this list, such as the case for Veeam Availability Orchestrator or Veeam Backup for Microsoft Office 365? No sweat — keep licensing those the way they are today.
  • Subscription Licenses will no longer be sold “by product,” because they can be used for ANY product, but rather in a pool of Instances in minimum bundles of 10.
  • Customers can now, for the first time, have both Perpetual and Instance Subscription licensing in the same centrally managed environment. This was a huge request before — and we made it happen! Just keep the edition consistent and you’re all set.
  • Perpetual licensing IS NOT going away! Continue using Perpetual, per socket, licensing for your VMs on premises. BONUS: We’re even going to give you up to 6 instances to kick the tires of Agents, Availability for AWS and more with no strings attached!

  • Legacy subscription licenses will be converted to Instances and upon installing Update 4, these customers will be asked to update their license file and will have a 90-day grace period to do this. Those of you who have both perpetual and agent licenses, this applies to you too, but you’ll also need to merge your licenses into the single file. After upgrading to Update 4, you will have 90 days to get your legacy agent license replaced with an Instance license — and until you do, you can use unlimited agents. So, don’t worry if you run into any license management issues — our licensing support department is here to help.

Summary

Veeam continues to raise the bar and do what is right for our customers. Licensing is becoming more portable for the masses and no longer a barrier for multi-cloud users. Learn more about VIL on our Instance licensing page and check out our Instance license configurator. 2019 is off to a great start and we are so excited about what lies ahead. Veeam Availability Suite 9.5 Update 4 and its complementary products are cloud-ready and so is our licensing solution. Let us help you achieve your goals in 2019!

See more:

 

The post Veeam Instance Licensing changes everything, except price! appeared first on Veeam Software Official Blog.


Veeam Instance Licensing changes everything, except price!

Search Yourself Online

Source: SANS security tip
Ever wonder just how much information is publicly available about you? Ever wonder how cyber criminals harvest information and customize attacks for their victims. The technique is called Open Source Intelligence (OSINT) and it is far simpler and more powerful than you think.
Search Yourself Online

Compliant data recovery with Veeam DataLabs Staged Restore

Source: Veeam

It’s safe to argue that, to date, the May 2018 implementation of the General Data Protection Regulation (GDPR) in the European Union, as well as the two-year ramp-up period that lead to the activation date, has elevated the status and industry press coverage of compliance-related issues more than any other data protection and compliance standard set by governing bodies.

The truth is, today, the stakes are high for organizations that continue to struggle with the proper management of sensitive, personal data or regularly failed audits, and IT professionals know this. In fact, in a recent study, Veeam customers were asked which corporate governance regulations have had the greatest impact on their data protection strategy and even though the new standard had been active for less than half a year, 28% answered “GDPR”, which was enough to make it second on a long list of regulation standards, some of which have been in effect for two decades (source: ESG Data Protection Landscape Survey).

So why is there so much concern? Because no business can afford a data breach and the subsequent debilitating press coverage, or customer alienation and fines that accompany such a negative event. According to a 2018 study, the average total cost of a data breach is $3.86 million, which for those of you who are curious, breaks down to $148 lost or stolen per record! And probably most concerning, for those respondents who had been through a data breach, they said they’re not completely convinced they can prevent a future data breach event from occurring. Almost 28% of this group indicated a recurring material breach was likely to happen over the next two years (source: 2018 Cost of a Data Breach Study).

The good news is, for Veeam customers who are losing sleep at night over compliance or other use cases, the latest release of Veeam Availability Suite includes Veeam DataLabs Staged Restore, which is a new and powerful feature designed to help manage compliance and ensure that sensitive data is removed from backups before the data has a chance to make it back to a live environment. Veeam DataLabs Staged Restore can also be used for other helpful use cases outside of compliance, including masking data for DevOps.

As I have already mentioned, the primary purpose of Veeam DataLabs Staged Restore is to enable a process to be injected into the recovery process of your virtual machines (VMs) that can help you easily and confidently manage compliance-related issues, such as those related to GDPR. The most typical use case is ensuring compliance after a failure scenario when recovering a machine back into production where data potentially needs to be removed or masked.

The ability to inject a script into the recovery process allows for the restore point to be modified before landing into the environment. In this scenario, a use case may be a DevOps environment where a business would like to leverage the latest version of data in their own segregated environment for versioning. But, from an operations point of view, the data may contain personal identifiable information (protected by compliance standards) that must be masked before landing in the new environment.

Workflow

Veeam DataLabs Staged Restore is one of the latest additions you will see as a selection option when the entire VM recovery wizard is started. If needed, this also gives us the option to inject an additional script into the VM we are recovering. The wizard shown below has several options.

 

Virtual lab – The virtual lab is an isolated virtual environment that is fully fenced off from the production environment. The network configuration of the virtual lab mirrors the network configuration of the production environment.

Application group (optional) – An application group consists of any VMs that the machine you are recovering may need to have to authenticate and function. It’s a group of dependants to the proposed machine for recovery.

Script – It’s required that the script remains located on the Veeam Backup & Replication server as this is the route taken for the injection into the virtual lab.

Credentials – For the script to be injected into the VM and to be executed, the required credentials should have the ability to authenticate and run the script.

Advanced – This allows for different options to take place. The first option is memory. As part of the recovery process, if you would like to increase or decrease the memory percentage assigned to the VM, then you can manage that here. You can also define boot and application time. This will depend on the services and resources available on the VM, but those that can be adjusted accordingly as well.

 

Once the wizard is completed, the recovery process will begin with the virtual lab appliance powering on within the environment, along with the presentation of the backup folder from the backup repository to your virtual environment. This uses a patented technology called vPower NFS.

vPower NFS

vPower NFS is used to present the backup file into your virtual environment as a datastore. This allows for a very fast way to get a machine up and running in the environment. However, the performance depends on the performance of the backup disk being used. So, the next step in the process is to power on that VM from the new datastore into our virtual lab environment. This environment is safely isolated away from production, however the VM has not had its IP address changed and will still have this when it boots. The IP is masqueraded through the virtual lab appliance so you can gain access through the Veeam Backup & Replication server.

Inject script from the Veeam Backup & Replication server

Now that we have our recovered VM that’s running in an isolated environment, the next step is to inject the script that we defined in the wizard. This entire process is automated, so there is no need for intervention. It is likely that by adding the script, the data will be modified in some form. All of these changes will be captured inside a production datastore that was defined during the restore wizard phase and not in the backup file, as we want to keep the backup file as a functional restore point.

Quick Migration to the environment

Finally, when the script has finished successfully, the process will continue the recovery steps. To do this we use a Veeam technology called quick migration. Veeam Quick Migration enables the ability to migrate the VM between datastores.

When the process is complete you will have your recovered VM within the environment, including the injected process. We hope this feature will help you be more reactive and efficient in staying compliant to a multitude of situations and requirements. Give Staged Restore a whirl and let us know your experiences in the comments!

 

The post Compliant data recovery with Veeam DataLabs Staged Restore appeared first on Veeam Software Official Blog.


Compliant data recovery with Veeam DataLabs Staged Restore

How to improve security with Veeam DataLabs Secure Restore

Source: Veeam

Today, ransomware and malware attacks are top of mind for every business. In fact, no business, large or small is immune. What’s even more concerning is that ransomware attacks are increasing worldwide at an alarming rate, and because of this, many of you have expressed concern. In a recent study administered by ESG, 70% of Veeam customers indicated malicious malware and virus contamination are major concerns for their businesses (source: ESG Data Protection Landscape Survey).

There are obviously multiple ways your environment can be infected by malware; however, do you currently have an easy way to scan backups for threats before introducing them to production? If not, Veeam DataLabs Secure Restore is the perfect solution for secure data recovery!

The premise behind Veeam DataLabs Secure Restore is to provide users an optional, fully-integrated anti-virus scan step as part of any chosen recovery process. This feature, included in the latest Veeam Backup & Replication Update 4 addresses the problems associated with managing malicious malware by providing the ability to assure any of your copy data that you want or need to recover into production is in a good state and malware free. To be clear, this is NOT a prevention of an attack, but instead it’s a new, patent-pending unique way of remediating an attack arising from malware hidden in your backup data, and also to provide you additional confidence that a threat has been properly neutralized and no longer exists within your environment.

Sounds valuable? If so, keep reading.

Recovery mode options

Veeam offers a number of unique recovery processes for different scenarios and Veeam DataLabs Secure Restore is simply an optional enhancement included in many of these recovery processes to make for a truly secure data recovery. It’s important to note though that Secure Restore is not a required, added step as part of a restore. Instead, it’s an optional anti-virus scan that is available to put into action quickly if and when a user suspects a specific backup is infected by malware, or wants to proceed with caution to ensure their production environment remains virus-free following a restore.

Workflow

The workflow for Secure Restore is the same regardless of the specific recovery scenario used.

  1. Select the restore mode
  2. Choose the workload you need to recover
  3. Specify the desired restore point
  4. Enable Secure Restore within the wizard

Once Secure Restore is enabled you are presented with a few options on how to proceed when an infection has been detected. For example, with an Entire VM recovery, you can choose to continue the recovery process but disable the network adapters on the virtual machine or choose to abort the VM recovery process. In the event an actual infection is identified, you also have a third option to continue scanning the whole file system to protect against other threats to notify the third-party antivirus to continue scanning, to get visibility to any other threats residing in your backups.

 

As you work inside the wizard and the recovery process starts, the first part of the recovery process is to select the backup file and mount its disks to the mount server which contains the antivirus software and the latest virus definitions (not owned by Veeam). Veeam will then trigger an antivirus scan against the restored disks. For those of you familiar with Veeam, this is the same process leveraged with Veeam file level recovery. Currently, Veeam DataLabs Secure Restore has built-in, direct integrations with Microsoft Windows Defender, ESET NOD32 Smart Security, and Symantec Protection Engine to provide virus scanning, however, any antivirus software with CMD support can also interface with Secure Restore.

 

As a virus scan walks the mounted volumes to check for infections, this is the first part of the Secure Restore process. If an infection is found, then Secure Restore will default to the choice you selected in the recovery wizard and either abort the recovery or continue with the recovery but disable the network interfaces on the machine. In addition, you will have access to a portion of the antivirus scan log from the recovery session to get a clear understanding of what infection has been found and where to locate it on the machine’s file system.

This particular walkthrough is highlighting the virtual machine recovery aspect. Next, by logging into the Virtual Center, you can navigate to the machine and notice that the network interfaces have been disconnected, providing you the ability to login through the console and troubleshoot the files as necessary.

 

To quickly summarise the steps that we have walked through for the use case mentioned at the beginning, here they are in a diagram:

SureBackup

Probably my favourite part of this new feature is how Secure Restore fits within SureBackup, yet another powerful feature of Veeam DataLabs. For those of you unfamiliar with SureBackup, you can check out what you can achieve with this feature here.

SureBackup is a Veeam technology that allows you to automatically test VM backups and validate recoverability. This task automatically boots VMs in an isolated Virtual Lab environment, executes health checks for the VM backups and provides a status report to your mailbox. With the addition of Secure Restore as an option, we can now offer an automated and scheduled approach to scan your backups for infections with the antivirus software of your choice to ensure the most secure data recovery process.

PowerShell

Finally, it’s important to note that the options for Veeam DataLabs Secure Restore are also fully configurable through PowerShell, which means that if you automate recovery processes via a third-party integration or portal, then you are also able to take advantage of this.

Veeam DataLabs – VeeamHUB – PowerShell Scripts

The post How to improve security with Veeam DataLabs Secure Restore appeared first on Veeam Software Official Blog.


How to improve security with Veeam DataLabs Secure Restore

Take your business beyond Availability with DataLabs

Source: Veeam

Beyond traditional backup use cases, one of the most important capabilities Veeam Backup & Replication provides you as a customer is the ability to proactively leverage data. It also allows you to be smarter about what you do with the gold mine of data you have wrapped up in backups that are sitting idle and to improve operational efficiencies, increase speed to market and even leverage existing data to improve compliance and security.

Veeam Backup & Replication Update 4, along with a huge payload of other features, focuses on the leveraging of data and transitioning from being reactive to becoming more proactive with this valuable resource. This proactivity comes in the form of our new Veeam DataLabs. A few of Veeam DataLabs’ capabilities have been customer favorites for years, including SureBackup and SureReplica to verify recoverability, as well as On-Demand Sandbox to speed up application deployment and address several DevOps and Dev Test concerns. Now, Update 4 introduces Veeam DataLabs Staged Restore and Veeam DataLabs Secure Restore to address compliance and security use cases as well. Find out more about Veeam DataLabs.

Veeam DataLabs Staged Restore

What business can afford a data breach? Today, a breach often includes a guaranteed barrage of negative publicity, loss of trust from loyal customers, as well as the possibility of a decrease in future business, not to mention, fines!

According to a recent study, the average total cost of a data breach is $3.86 million, which is a 6.4% increase over 2017 (Source: 2018 Cost of a Data Breach Study: Global Overview, July 2018, conducted by Ponemon Institute LLC). This is why our first and most important new Veeam DataLabs use case focuses on GDPR and Article 17 (the right to erasure). This article applies to many of our customers who hold data from European citizens (regardless of their organization’s geographic location) and therefore must adhere to new data-compliance regulations or face a fine of up to 3% of their global turnover.

In the event that you lose critical data in production and are forced to restore the data, we are hopeful that backups exist, which have been tested with SureBackup to verify that the VM, application and OS are in good working order. SureBackup provides Veeam customers with peace of mind and reassurance that their backups have been successfully booted and tested for recoverability. However, while verifying backup recoverability is an effective first step to recovery, as of May of 2018, most businesses still need an effective way to also ensure compliance during this process. What if the backup being restored contains sensitive data protected by GDPR regulations? Leveraging the capabilities of Veeam DataLabs Staged Restore helps simplify this process.

Let’s look at this process before and after the introduction of GDPR and use a construction company as an example. Suppose this company is contractually required to keep data related to a new housing development for 25 or more years. This data may include supporting emails, contacts, reports, quotes, inquiries, etc. associated with the build. Eventually, the company may use this data to determine which showrooms were most popular, which customers preferred specific designs, etc. to improve their business and marketing tactics. In this case, the company would retain this data in their backups, which is permitted by GDPR regulations; however, any of the data that customers have requested to be removed and flagged for erasure under the “right to be forgotten” clause should never return to a production environment or workflow.

Therefore, before May 2018 and the introduction of GDPR, if the construction company needed to restore a backup including this data, the restore process would be managed in the following manner:

 

Fast forwarding to May 25, 2018, the next image shows how Veeam DataLabs Staged Restore helps the construction company perform a restore. It shows how they simultaneously remain compliant with GDPR’s Article 17 “Right to be Forgotten,” ensuring the data is successfully restored, but also that all sensitive data included in the backup is effectively removed and therefore never returns to the production environment.

 

Another prevalent use case often performed by our users is testing and updating patches. Most users prefer to test their patches and roll them out to a production environment with SureBackup. Before Update 4, users would oftentimes lose their tests and replicate within their production environment. Using Veeam DataLabs Staged Restore, this action can be done as part of the restore, with changes within the production environment, therefore removing a redundant step.

Veeam DataLabs Secure Restore

Like compliance, we know that malware is also a major concern. In 2017, there was a significant increase in press coverage around the security of private and sensitive data, most of which was due to the increased threat of ransomware. More data was lost or stolen in the first half of 2017 (1.9 billion records) than in ALL of 2016 (1.37 billion) and that was before the most significant breaches of the year (Source: Breach Level Index).

And the truth is, malicious attacks won’t stop any time soon. Ransomware attacks are predicted to continue in frequency and aggression as they become more sophisticated and harder to stop, and this issue has proven to be top-of-mind for Veeam customers. In fact, a recent ESG study indicated that 70% of our customers are concerned about their backups being contaminated (Source: ESG Master Survey Results, 2018 Data Protection Landscape Survey, October 2018).

Ransomware is a form of malicious malware that takes systems and data hostage, either by locking the user out completely or locking files so they can’t be accessed. The most common action by hackers is to encrypt files and force users to pay a ransom via cryptocurrency to get the decryption key.

Typically delivered through a link, ransomware is usually activated once a user clicks a link, which makes it possible for the virus to take over and spread to the rest of the corporate network.

The customer is then given instructions on how to send payment. Other, more aggressive forms of ransomware exploit security holes to infect systems. NotPetya and WannaCry were two such attacks this year.

It’s important to note that Veeam DataLabs Secure Restore does not prevent ransomware or other malicious attacks. However, this unique, patent-pending capability allows for a pre-staging scan from third-party, anti-virus integrations. This means that when a customer attempts to recover their files, they can verify that their backups are safe and virus-free before recovering, ultimately ensuring the threat has been removed from their network.

For ease of articulating this and the associated issues and problems, the diagram below depicts a typical timeline when a customer is hit with a zero-day attack. Currently, the biggest problem in the industry is that anti-virus vendors lack an adequate fix for a zero-day attack.

 

 

In this common timeline example, how do organizations know how much and which data has been compromised and unreadable?

With Update 4, as an added optional step for all non-granular restores inside the restore wizard, Veeam DataLabs Secure Restore will allow customers to scan backups before restoring them to production. The wizard will also include additional options if an infection is identified.

For additional assurance, this process allows for the mount server’s anti-virus software to be fully up to date with virus definitions, and multiple anti-virus vendors can perform a scan.

In the diagram above, you can see that the initial step is to select the restore point required on the Veeam management server. When the backup file is located, disks for the infected machine(s) are mounted to the Veeam mount server. The next stage then allows the anti-virus software to perform a scan against the attached disk.

As part of the recovery wizard, you then have three response options:

 

  1. If no infections are found, you can continue with the restore
  2. If an infection is found, but you need to proceed, Veeam will disable the network adapters for further investigation
  3. If an infection is found, you can abort the recovery

 

This feature provides organizations the ability to recover back to a safe, uncompromised backup restore point. The ability to pinpoint the time of infection or the time it was infected and working back from that point allows for a safe and secure process for recovering data after a malicious attack. The diagram below depicts the new process of secure data recovery when utilizing Veeam DataLabs Secure Restore.

 

 

With new, stringent compliance standards to follow and aggressive malware concerns weighing heavily on the minds of your key decision makers, Veeam DataLabs can help provide peace of mind that you are following every precaution to remain compliant and avoid the potential of cross-contaminating your production environment with viruses in your backups. Read more on Veeam DataLabs now or download a FREE trial of NEW Veeam Availability Suite 9.5 Update 4 to try Veeam DataLabs today.

The post Take your business beyond Availability with DataLabs appeared first on Veeam Software Official Blog.


Take your business beyond Availability with DataLabs

How to move your business to the cloud in 2 steps!

Source: Veeam

 

Recently Veeam expanded on its existing cloud capabilities with the greatly anticipated release of Veeam Availability Suite 9.5 Update 4. This release has produced an overarching portability solution, Veeam Cloud Mobility, which contains support for restoring to Microsoft Azure, Azure Stack as well as AWS. In this blog, we’ll cover the business challenge these restore capabilities solve, how businesses can use them, and the advantage of using Veeam’s features over comparable features in the market.

Workload portability and the cloud is still a challenge

As more and more businesses look to move their data and workloads to the cloud, they can encounter some challenges and constraints with their current backup solutions. Many backup solutions today require complex processes, expensive add-ons, or require that you perform manual conversions to convert workloads for cloud compatibility.

In fact, 47% of IT leaders are concerned that their cloud workloads are not as portable as intended1. The truth is, portability is absolutely key to unlocking all the benefits that the cloud has to offer, and in terms of hybrid-cloud capabilities — portability is critical. There has to be an easier way…

Workload mobility made easy with Veeam

With the latest release of Veeam Availability Suite 9.5 Update 4, Veeam has delivered a more comprehensive set of restore options with the NEW Veeam Cloud Mobility. Veeam Cloud Mobility builds on the existing Direct Restore to Microsoft Azure with new restore capabilities to Microsoft Azure Stack as well as AWS. Veeam Cloud Mobility allows users to take any on-premises, physical and cloud-based workloads and move them directly to AWS, Microsoft Azure and Microsoft Azure Stack. When I say “any workload,” I mean it! Whether a virtual machine is running on VMware vSphere, Microsoft Hyper-V or Nutanix AHV, a physical server or an endpoint — anything that can be put into a Veeam repository can then be restored directly to the cloud. And the good news is these restore features are included in any edition of Veeam Backup & Replication 9.5 Update 4.

Now let’s go over some of the benefits:

Easy portability across the hybrid-cloud

As mentioned earlier, it is critical to have workload portability to get all the benefits that cloud has to offer no matter what stage of your cloud journey. Veeam Cloud Mobility overcomes many of the complexity and process challenges with the ease of use Veeam is known for. For customers looking to move workloads to the cloud, this is only a simple 2-step process:

 

  1. Register your cloud subscription with Veeam
  2. Restore ANY backup directly to the cloud

 

In addition to the simplicity of a 2-step process, with Veeam’s Direct Restore to AWS, there is a built-in UEFI to BIOS conversion which means there are no manual conversions needed to restore modern Windows workstations to the cloud. And, with the new Direct Restore to Microsoft Azure Stack feature, customers can get the added benefit of being able to move workloads from Microsoft Azure to Azure Stack. By doing so, unlocking the unlimited scalability and cost-efficiency of a true hybrid cloud model.

Enabling business continuity

Another primary benefit for businesses is that Veeam Cloud Mobility can be used for data recovery in emergency situations. For instance, if a site failure occurs, you will be able to easily restore your backed-up workloads, spinning them up as virtual machines in AWS, Azure and Azure Stack. Then as the smoke clears, you will be able to gain and provide access to the restored VMs. Unlike our Veeam Cloud Connect feature offered through our Veeam Cloud and Service Provider (VCSP) partners, Veeam Cloud Mobility is not considered a disaster recovery solution designed to meet strict RTOs or RPOs. Rather, this an efficient restore feature that gives you a simple, affordable game plan to gain eventual access to workloads should a disruption ever happen to your primary site.

Unlocking test and development in the cloud

Whether businesses need to test patches or applications, there is a big need for test and development. But many businesses find that conducting such tests locally puts a strain on their storage, compute and network. The cloud on the other hand is a ready-made testing paradise, where resources can be scaled up and down as needed on a dime. Veeam Cloud Mobility gives customers the ability to unlock the cloud for their test and development purposes, so they can conduct testing as frequently, quickly and affordably as needed without the constraints of a traditional infrastructure. 

Take away

Data portability is vital as part of an overall cloud strategy. With the NEW Veeam Cloud Mobility you can move ANY workload directly to AWS, Azure and Azure Stack to maintain the portability you need to leverage the power of the cloud. Whether for data portability, recovery needs or test and dev — Veeam Cloud Mobility helps make workload portability easy.

If you or your customer have not yet taken a free trial of Veeam, now is the perfect time to try Veeam Availability Suite for your cloud strategy!

 

Sources:

2017 Cloud User Survey, Frost & Sullivan

Helpful resources:

The post How to move your business to the cloud in 2 steps! appeared first on Veeam Software Official Blog.


How to move your business to the cloud in 2 steps!

Streamlined data protection for the healthcare data center

Source: Veeam

When I was a part-time CTO for hospitals prior to joining Veeam, I was focused on outcomes: understanding how technology choices ultimately affect the clinical and patient experience with a goal of improved patient outcomes and higher satisfaction. I said as much to a West Coast health system CIO when presenting a strategy, and he said to look even further: the true outcome of technology choice in healthcare is the health and well-being of the community at large.

That has been with me ever since and helped shape Veeam’s mission in healthcare — improving the health of our communities by assuring Availability of your healthcare information with simple, reliable, flexible backup and recovery software. Wherever your applications and data go, whatever platform whether on-premises or in the cloud, we protect it easily so your team can focus on the clinical experience and the health of your communities.

Profile of Veeam’s healthcare customers

 


Fig. 1: Veeam Top Thirty Customers’ EHR Platforms

 

Veeam healthcare highlights:

  • 12,000+ healthcare customers worldwide
  • 4,300+ healthcare customers in North America
  • 150,000+ clinical applications protected
  • 30-40% TCO reduction reported by customers
  • Net Promoter Score nearly 3x the industry average over 10 years

Our top thirty customers run every major EHR platform and report substantial savings for the systems we protect. They love our software because it is powerful, easy, and we deliver piece of mind for a critical function: the last line of defense against failure of all kinds. Our customers have used the savings realized by investment in Veeam software to purchase new MRI machines that directly affect the health of the communities they serve. Here are a few other examples: Greenville Health, Roswell Park Cancer Inst, Rochelle Community Hospital, Butler Health.

HIMSS19: Foundations need modernization too

More than 45,000 healthcare professionals will assemble in Orlando for HIMSS19 2/11-2/15 to discuss every challenge of healthcare transformation from care and payment optimization to clinical application strategy and healthcare information security.

Amid the trending topics of artificial intelligence, genomics, interoperability, and the omnipresent challenges of mergers and acquisitions, we must also give time to technology platform basics: agile infrastructure consumption models, rapid scale, data and application portability to cloud, data and information stewardship, business continuity, and assured recovery. Those all sound like table stakes: critical functions that we should have well in hand.

Much of it is not well in hand, however, surveys continue to report gaps in business continuity plans, phishing and ransomware continue to cause service interruptions, and organic disruptive events will continue to affect the Availability of applications and the delivery of care regardless of the technology investments we make. Add to this the further adoption of off-premises platform options from Amazon, Microsoft, and Google, Software as a Service applications such as Microsoft Exchange Online, and we require new solutions and practices to ensure protection of healthcare information and the Availability of related clinical applications.

Closing thoughts

Foundations are easy to lose sight of, overshadowed by more visible elements above, but without attention and modernization, all that is built upon them is at risk.

Please visit us at HIMSS19 Booth #4191 to hear our story and see for yourself how we can make a difference in your data center and the community you serve.

 

The post Streamlined data protection for the healthcare data center appeared first on Veeam Software Official Blog.


Streamlined data protection for the healthcare data center

How to restore and convert your workloads directly to the cloud

Source: Veeam

Veeam has been expanding the capabilities of the Veeam Availability Suite product set. Recently, Veeam announced Veeam Cloud Mobility, providing workload portability across clouds and different platforms.

In this blog, we will focus on some of the technical aspects of the Veeam Cloud Mobility capability. With the latest release of Veeam Availability Suite 9.5 Update 4, Veeam has provided an extensive set of restore options. Building on the existing Direct Restore to Microsoft Azure functionality, are extra restore capabilities including Direct Restore to Microsoft Azure Stack and Amazon AWS EC2. With the Direct Restore capabilities, a user can restore any backup from any on-premises platform and move them directly to the cloud. This is what we will look at here.

Direct Restore to Amazon AWS EC2

First let’s take a look at how we easily restore workloads to Amazon AWS EC2. We begin by selecting the backup of the workload we want to run in the cloud. We simply right-click and select Restore to Amazon EC2

 

We select the AWS account we want to use, the AWS region, and then the data center region that we want to restore the workload too.

 

We can now change the original VM name to an EC2 specific instance name, with additional capabilities to add prefix and suffixes.

 

Select the EC2 instance type and what kind of license you want to use, whether to bring your own (BYOL) or lease a license from Amazon.

 

Pick your Amazon VPC, subnet and security group.

 

Pick the proxy options (this will be used to do the actual restore into Amazon AWS EC2).

 

Then the restore will begin and the status will update during the process.

 

That is how simple it is to move a workload to Amazon AWS EC2 from an on-premises backup. The great aspect of this capability is its simplicity. Seven to eight steps and you have migrated a workload to the public cloud.

The steps are the same for Microsoft Azure and Microsoft Azure Stack as well.

Virtual machine conversion

Now with any migration, it is important to understand that a conversion has to take place. When understanding the technology in migrating from different platforms, it is important to understand what is actually happening. Let’s take an example of moving a VMware vSphere VM to Amazon AWS EC2. As one expects, Amazon is not running VMware vSphere to provide the IaaS capabilities in EC2, which means they are using a different hypervisor. In order to restore a VMware vSphere VM to Amazon AWS EC2, a conversion has to take place. This allows for the VMware vSphere virtual machine files (vmdk, .vmx) to be changed to the Amazon equivalent. Also, Amazon AWS EC2 does not directly support GPT boot volumes, so a conversion is necessary. The diagram below shows how this works.

Takeaway

As companies invest further into the multi-cloud capabilities and strategy, it is becoming a more complex environment to operate in. With the new Veeam Cloud Mobility having the key capabilities to move workloads from and to any platform in any location is a major step forward in simplifying the complexities that a multi-cloud strategy brings.

If you or your customer have not yet taken a free trial of Veeam, now is the perfect time to try Veeam Availability Suite for your cloud strategy!

 

The post How to restore and convert your workloads directly to the cloud appeared first on Veeam Software Official Blog.


How to restore and convert your workloads directly to the cloud