- Notes, cautions, and warnings
- Preface
- Introduction
- Configuration and Setup
- Best practices
- (Optional) Configuring support for multiple vCenters
- Installing Avamar Administrator software
- Configure vCenter-to-Avamar authentication
- Creating a dedicated vCenter user account
- Add a vCenter as an Avamar client in the AUI
- Register or add a proxy client
- Edit vCenter
- Auto-discovery of virtual machines
- Deploying proxies using Proxy Deployment Manager from AUI
- Upgrading proxies
- Maintaining proxies
- Monitor proxy status
- Import custom certificate in Avamar VMware Image Backup Proxy
- Security patch updates for proxies
- Additional Avamar server configuration
- Administration
- Clients and containers
- Add a VMware client
- Delete a VMware client
- Enable changed block tracking
- Viewing protected virtual machines in Avamar Administrator
- Viewing a replicated virtual machine name in Avamar Administrator
- Monitoring the vCenter connection in Avamar Administrator
- Manually synchronize the AUI with vCenter and VM clients
- Rename a vCenter client
- VMware Image Dataset
- Adding guest backup throttling parameters to a dataset in Avamar Administrator
- Groups
- Changing proxy datastore and group assignments in Avamar Administrator
- Backup
- Limitations
- Perform an on-demand backup of a virtual machine by using AUI
- Set advanced plug-in options in the AUI
- Schedule backups using the AUI Policy wizard
- Log truncation backups
- Monitor backups
- Cancel backups
- Support for vCenter HA failover for inflight backups
- Configure a backup to support VMware encryption
- Configure a backup to support vSAN encryption
- Enforcement of backups to Data Domain
- Restore
- Image and file-level restore guidelines
- Image backup overview
- File Level Restore
- Performance improvements for File Level Restore
- File-level restore supported configurations
- RSA SecurID authentication in the AUI
- File Level Restore troubleshooting and limitations
- File Level Restore (FLR) in the AUI
- Restore ACL for non-root user configuration
- Perform a File Level Restore (FLR) operation by using the Data Protection Backup and Recovery File Level Restore (FLR) UI
- Backup Validation
- Protecting the vCenter Management Infrastructure
- vCenter deployments overview
- Best practices for backup and restore
- Protecting an embedded PSC
- Protecting external deployment models
- vCenter server appliance(s) with one external PSC where PSC fails
- vCenter server appliance is lost but the PSC remains
- vCenter server appliance with multiple PSCs where one PSC is lost, one remains
- vCenter server appliance remains but all PSCs fail
- vCenter server appliance remains but multiple PSCs fail
- vCenter server appliance fails
- vCenter server restore workflow
- Platform Services Controller restore workfow
- Command reference
- Support for vCenter HA failover for inflight backups
- Additional considerations
- Protecting ESX Hosts
- Avamar Image Backup and Recovery for VMware Cloud on Amazon Web Services (AWS)
- Avamar image backup and recovery for VMware Cloud on AWS
- Configure the VMware Cloud on AWS web portal console
- Amazon AWS web portal requirements
- vCenter server inventory requirements
- Deploy the vProxy OVA on a vCenter server in VMware Cloud on AWS
- Configure vCenter-to-Avamar authentication for VMware Cloud on AWS
- Avamar image backup and restore for VMware Cloud on AWS best practices
- Unsupported Avamar operations
- Backing up VMware Cloud Foundation (VCF) Components on VxRail
- Manually deploying proxies
- Overview
- Downloading the proxy appliance template file
- Deploying the proxy appliance in vCenter
- Deploying a proxy appliance in vCenter using the vSphere Web Client
- Registering and activating the proxy with the Avamar server
- Configuring proxy settings in Avamar Administrator
- Performing optional proxy performance optimization
- vSphere Data Ports
- Using VMware vRealize Log Insight
- Plug-in Options
- Troubleshooting
- Installation and configuration problems and solutions
- Backup problems and solutions
- Backup does not start
- Exclude the proxy from the virtual machine backup if performing the backup with other VMware software
- Backups fail with No Proxy errors
- Changed block tracking does not take effect
- Proxies are not assigned to backup jobs
- VM snapshot fails backups due to incorrect pre-evaluation of available space
- Backup and restore of vFlash Read Cache enabled VMs will use NBD transport mode
- Exchange log truncation unsupported when VMDK is encrypted via vSphere
- Indexing VMware image backups requires HotAdd transport mode
- Proxy status alert
- Restore problems and solutions
- Glossary
Dell EMC Avamar for VMware 19.7 User Guide
Add vCenter authentication certificates to the MCS keystore
Configure vCenter-to-Avamar authentication by adding a vCenter authentication certificate to the MCS keystore. Perform this action for each vCenter that you intend to protect.
Prerequisites
NOTE:Importing the same certificate with a different alias name is not permitted.
Steps
- Log in to the Avamar AUI with Administrator privileges. Open a web browser and type the following URL:
https://Avamar_server/aui
Where Avamar_server is the DNS name or IP address of the Avamar server.
NOTE:If your environment does not meet HTTPS certificate validation requirements, the certificate validation fails and an error message appears asking if you want to continue to download packages. Ignoring certificate validation might cause security issues.- In the Avamar Username field, type a username with administrative privileges.
- In the Avamar Password field, type the password for the administrative user.
- Select Avamar as the Auth Type.
- Click Log In.
- In the
AUI navigation pane on the left, click
, and then click
.
The System window appears. - Select the
Certificate tab, and then click
+IMPORT CERTIFICATE under the
Trust Certificate tab.
The Import Certificate dialog box appears.NOTE:If the vCenter certificate and the Avamar web server certificate are issued by the same CA, you need not import the trusted certificates again for vCenter connection. To check Avamar web server certificate, check the Raw field in the private entry details of the Private Key tab.
- Import the vCenter trust certificate by specifying the following information:
- In the
Base Information window, perform the following steps:
- Specify the alias name for the vCenter certificate.
- Click the BROWSE button to browse and import the vCenter certificate.
- Click NEXT.
- (Optional) On the
Validation window, specify the IP address of the vCenter, the Port number as
443, and then click
VALIDATE.
The Validation Result pop-up window is displayed, where you can view if the validation is successful or failed. If the validation fails, verify the inputs again.
If you skip validation and proceed with importing the certificate, the IP and Port fields are disabled.
NOTE:Although validation is optional, for vCenter authentication certificates, it is recommended that you perform this step to ensure that there is successful communication between Avamar and the vCenter server. The validation only works with the vCenter that has a self-signed certificate or a certificate that is issued by 1-level CA. Skip the validation if your vCenter has a certificate issued by multi-level CA.
- In the
Base Information window, perform the following steps:
- Click
FINISH.
The successfully imported vCenter certificates are displayed under the Trust Certificate tab. You can view and delete the vCenter certificates by clicking the View and Delete icons, respectively.NOTE:To import the parent vCenter trusted certificate, open a web browser and go to https://vCenter IP, then right-click Download Root CA certificate in the bottom-right corner of the window and select Save As... to extract the file. It is not necessary to restart the MCS after the vCenter certificate is imported to the MCS keystore.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\