- Notes, cautions, and warnings
- Preface
- Introduction
- Getting Started
- Storage and Applications
- Policies and Copies
- Monitoring
- Performing a PowerProtect Data Manager Recovery with Cyber Recovery
- Recovering PowerProtect Data Manager data
- Meeting prerequisites for a PowerProtect Data Manager recovery
- Initiating a PowerProtect Data Manager recovery in the Cyber Recovery UI
- Running a PowerProtect Data Manager recovery check
- Cleaning up after a PowerProtect Data Manager recovery
- Performing postrecovery steps for a PowerProtect Data Manager recovery
- Administration
- Administration overview
- Manually securing and releasing the Cyber Recovery vault
- User roles
- Managing users
- Managing login sessions
- Setting up an email server
- Managing Cyber Recovery password expiration
- Resetting Cyber Recovery passwords
- Resetting the IP address on the management host
- Updating the SSL security certificate
- Configuring a daily activity report
- Configuring a telemetry report
- Changing time zones
- Changing the log level
- Collecting logs for upload to support
- Log file rotation
- Protecting the Cyber Recovery configuration
- Retrieving your preserved Cyber Recovery configuration
- Deleting unneeded Cyber Recovery objects
- Cyber Recovery disaster recovery
- Troubleshooting
PowerProtect Data Manager 19.11 Cyber Recovery User Guide
Configuring DD Compliance mode retention locking
Configure the Cyber Recovery vault DD system for Retention Lock Compliance.
Prerequisites
The Cyber Recovery vault DD system must have a Retention Lock Compliance license.
For more comprehensive information about the procedures to configure Retention Lock Compliance on a DD system, see the Dell EMC DD OS Administration Guide.
About this task
DD systems support both Governance mode and Compliance mode retention locking. Compliance mode is a stricter type of retention locking, which enables you to apply retention policies at an individual file level. You cannot delete or overwrite locked files under any circumstances until the retention period expires.
NOTE
Retention Lock Compliance mode is not supported on:
- The Cyber Recovery solution on Amazon Web Services (AWS)
- Dell EMC PowerProtect DD3300 appliance
- Dell EMC DP4400 Integrated Data Protection Appliance (IDPA)
- Dell EMC PowerProtect DD Virtual Edition (DDVE) storage appliance
Steps
-
On the
Cyber Recovery vault
DD system, log in as an Admin user and then add a security account with the security role:
# user add <account name> role security
The security role user can be referred to as a Security Officer.
- Log out as the Admin user and log in again as the Security Officer user.
-
Enable security authorization:
# authorization policy set security-officer enabled
- Log out as the Security Officer user and log in again as the Admin user.
-
Configure the
Cyber Recovery vault
DD system for Retention Lock Compliance:
# system retention-lock compliance configure
-
When prompted, enter the security officer credentials.
The software updates the configuration and then reboots the Cyber Recovery vault DD system, which is unavailable during the process.
- Log in as the Admin user.
-
Enable Retention Lock Compliance:
# system retention-lock compliance enable
- When prompted, enter the security officer credentials.
Results
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\