> Commvault Cloud > Cleanroom Recovery

Preparing Your Environment for Cleanroom Recovery

Prepare production workloads, Azure Cleanroom, and Commvault environment to perform a recovery into a Cleanroom site.

Production Workloads

Complete the steps listed in the table below to prepare production workloads.

Workloads What to Do
Windows VMs
  1. Install the Azure VM agent on the source VM.
  2. Enable SAN Policy on the Source VM.
    Note: No reboot is required, but it is still recommended.
Linux VMs
  1. Make a snapshot or backup of the source VM before modifying it.
  2. Install Hyper-V drivers on the Source VM.
  3. In addition, perform the following steps:
    1. Edit /etc/dracut.conf, add content: 
      add_drivers+="hv_vmbus hv_netvsc hv_storvsc"
    2. Verify that no dracut conf files (for example, /usr/lib/dracut/dracut.conf.d/01-dist.conf) contain the following lines. If it contains, comment out the lines 
      hostonly="yes"  <br>
    3. Rebuild the initramfs: 
      sudo dracut -f -v  <br>
    4. Reboot the VM and check that it still boots fine.
  4. Install Azure Linux Agent on Source VMs. No reboot is required, but it is still recommended.
All Verify that all other steps required to convert VMs into Azure are successfully completed.

Azure Cleanroom

Complete the steps listed in the table below to prepare Azure Cleanroom.

Action Description
Verify the subscription Ensure your Azure Cleanroom subscription has been created.
Verify the Resource Providers are enabled in Azure Cleanroom The following Resource Providers must be enabled in Azure Cleanroom.

  • microsoft.support
  • microsoft.Storage
  • microsoft.SerialConsole
  • microsoft.ResourceNotifications
  • microsoft.ResourceGraph
  • microsoft.Portal
  • microsoft.OperationalInsights
  • microsoft.Network
  • microsoft.MarketplaceOrdering
  • microsoft.MarketplaceNotfications
  • microsoft.MachineLearning
  • microsoft.GuestConfiguration
  • microsoft.Features
  • microsoft.CostManagement
  • microsoft.Consumption
  • microsoft.Compute
  • microsoft.Commerce
    microsoft.CloudShell
  • microsoft.ClassicSubscription
  • microsoft.ChangeAnalysis
  • microsoft.Billing
  • microsoft.Authorization
  • microsoft.ADHybridHealthService

Create an Azure App Registration for Commvault Verify that an App Registration has been created for Commvault with correct permissions for the entire Cleanroom subscription and for the Storage Account (Storage Account Contributor and Storage Blob Data Contributor).
Verify the staging storage account Verify that the Resource Group and Storage Account is created with accurate configuration in the region where the VMs will be recovered (only locally-redundant storage (LRS) and StorageV2-general purpose v2-accounts are supported).

Note: Make sure that the virtual network where the access nodes will be created has access to the storage account.
Set up a virtual network Verify the following:

Commvault Environment

Complete the steps listed in the table below to prepare Commvault environment.

Action Description
Verify auxiliary copies on Air Gap Protect
  • Verify that auxiliary copy jobs on Air Gap Protect are not fallen behind and at least one full backup is completed and hosted in Cleanroom to perform recovery.
  • Verify that the jobs are available inside the Air Gap Protect copy and ensure that there is at least one full backup per VM.
  • Verify that the Air Gap Protect region and the Cleanroom target region are the same.

For more information, see the following topics:
Create a Cleanroom hypervisor Create Cleanroom Hypervisor(s). This hypervisor will represent your Cleanroom subscription.
Create a Cleanroom recovery target Create a Cleanroom recovery target. The recovery target represents your Cleanroom destination.

Optional. If you want your Security Operations team to create a recovery group automatically from external SIEM and SOAR solutions, you will need to create a dedicated recovery target and assign permissions to allow access to the Security Operations team. This ensures that the correct target is selected during the creation of recovery groups from external solutions such as Palo Alto XSOAR. This is a crucial step to guarantee that the recovery groups are created accurately when initiated from external solutions.
Create Cleanroom Recovery Groups Create recovery groups and add your workloads that you want to recover into the Cleanroom.

Loading...