A backup gateway is required to back up clusters without egress charges.
You can add a gateway for the following authentication methods:
-
IAM Role
-
Access and Secret Key
-
STS assume role with IAM policy
Add a Backup Gateway with IAM Role Authentication
-
Click the add button .
The Add a new backup gateway dialog box appears.
-
For Platform, select the OS for the access node.
-
Click Generate link.
An AWS CloudFormation template is created based on the region and the operating system that you selected.
-
Click the Launch CloudFormation Template link to open the AWS console.
-
Log on to the AWS console.
The Quick create stack page appears.
-
Under Parameters, enter the following information:
1. From the EC2 Instance Type list, select the type of EC2 instance to use for the backup gateway.
2. From the EC2 Key Pair list, select a key pair to use to access the Commvault Cloud backup gateway.
3. From the VPC ID list, select an Amazon Virtual Private Cloud (VPC).
4. From the Subnet ID list, select a subnet.
5. From the VPC CIDR list, select a VPC CIDR.
Note
Port 8403 opens on access nodes only when the request comes from the IP ranges that are listed in the VPC CIDR field.
-
Click Create stack.
Wait for the Commvault Cloud backup gateway to be created.
Add a Backup Gateway with STS Assume Role with IAM Policy and Access and Secret Key Authentication Methods
-
Click the add button .
The Add a new backup gateway dialog box appears.
-
For Platform, select the OS for the access node.
-
Click Generate link.
An AWS CloudFormation template is created based on the region and the operating system that you selected.
-
Click the Launch CloudFormation Template link to open the AWS console.
Note
If AWS EBS encryption is enabled for your region in your AWS account, to use the template, you must be a key user for the default encryption key. If you are not a key user for the default encryption key, copy the Launch Cloud Formation Template link and share it with someone who is a key user, such as your security administrator.
-
Log on to the AWS console.
The Quick create stack page appears.
-
Under Parameters, enter the following information:
-
From the EC2 Instance Type list, select the type of EC2 instance to use for the backup gateway.
-
From the EC2 Key Pair list, select a key pair to use to access the Commvault Cloud backup gateway.
-
From the VPC ID list, select an Amazon Virtual Private Cloud (VPC).
-
From the Subnet ID list, select a subnet.
-
From the VPC CIDR list, select a VPC CIDR.
Note
Port 8403 opens on access nodes only when the request comes from the IP ranges that are listed in the VPC CIDR field.
-
-
Click Create stack.
Wait for the Commvault Cloud backup gateway to be created.