Blogs and Podcasts

In November last year, AWS introduced resource control policies, “a new authorization policy managed in AWS Organizations that can be used to set the maximum available permissions on resources within your entire organization.” Their announcement blog article included an example which clearly demonstrates a security improvement for Veeam customers storing their backup data in Amazon S3. I want to highlight this new feature and how it can help improve your security posture for your backups, a topic I am always happy to write about. A primer on policiesBefore we go into resource control policies, we first need to establish the types of policies there are in AWS and what they’re used for.In general, there are two types of policies in AWS: identity-based policies and resource-based polici

Hi Folks,This will be an online and in person event, part of Tech Week here. Undoubtedly Prof: Hinton will touch on Cybersecurity and AI. I was lucky enough to get in person tickets and will be inside the University of Toronto’s Convocation Hall for first time since I graduated in... (censored content) 😂. AI seems to be seeping into all walks of life and data protection is no exception. Hopefully people will find this interesting.https://lu.ma/qxsn9q0zhttps://alumni.utoronto.ca/events/desjardins-speaker-series-frontiers-ai-insights-nobel-laureatecheers  

Hi everyone,In one of my recent customer projects, I faced the challenge of migrating a client from IBM TSM to Veeam Data Platform. One major concern was the tape handling and reporting capabilities – the customer was used to a higher level of automation with TSM and found Veeam’s native features lacking in comparison. Requirements:•     Daily backups to tape, followed by offsite rotation.•    An automated report showing:   Which tapes need to be taken offsite. Which tapes should be brought back from the safe.•    Automatic re-import of tapes whose write protection had expired. The Solution: 1. Reporting with “MyVeeamReport”Since the customer didn’t want to license Veeam ONE, we used the community project [MyVeeamReport] https://

Inspired by the session of ​@Mildur and Andreas Lesslhumer during VeeamOn 2025 in San Diego,I introduced a series of blogposts called “RegKey of the Month”! Every month, I’ll dive into a useful, new, or little-known Veeam registry key that can make your admin life easier.So let’s get started with the first episode:This month’s highlight tackles the automatic unmounting of SureBackup NFS datastores, a feature introduced in Veeam Backup & Replication v12.3.1:If you're managing Veeam environments and often encounter those pesky inaccessible NFS datastores after running SureBackup jobs, you're not alone. These lingering mounts can clutter your vSphere view and skew capacity planning reports.👉 Check out the full blog post:📖

Hello Community, As part of my ongoing work with Veeam Backup for Google Cloud (VBGC), I’ve come across an important yet sometimes overlooked component in its architecture, the Worker Profile. Worker profiles play a critical role in the performance and reliability of your backup and archiving operations in the Google Cloud Platform (GCP). In this article, I’ll explain what worker profiles are, how they are used, why GCP quota limits matter, and how to plan your configurations to avoid common pitfalls. What Are Worker Profiles? In Veeam Backup for Google Cloud, worker instances are temporary compute instances deployed automatically by the VBGC appliance to handle backup, restore, and archiving tasks. These instances are configured via Worker Profiles, which you manage from the Web UI under:Configuration ➝ Workers ➝ ProfilesEach profile defines:The machine typ

Late last year Microsoft released Azure Data Box Next Gen, and, for US, EU, UK, Canada and US Gov, this version has fully replaced the old generation. Other region roll-out is still in progress. Using Azure Data Box Next Gen is supported with Veeam and is significantly faster than the previous generation.We often get questions about seeding data with Veeam Backup and Replication. So, I wanted to cover briefly how that works.1. Ordering Azure Data BoxOrder your Azure Data Box with ‘Import to Azure’. Selecting the appropriate subscription and resource

On May 28th of this year, I had the incredible opportunity to join Rick Vanover and Emilee Tellez at Security Field Day 13 in San Jose, California! I was able to tag along and help them facilitate their smashing Security Field Day presentation, centered around Veeam’s latest innovations in security. If you are unfamiliar with what Security Field Day is, it’s a live streamed presentation that includes an in-person roundtable of security thought leaders and experts to weigh in and drive the conversation about what really matters in the current security landscape. I wanted to take this opportunity to break down the five-part presentation and share my feedback on the most impactful and interesting moments. Have You Seen Veeam Lately?This section was a great starting point to give a fresh update on Veeam. Highlighting our pillars of Data Backup, Recovery, Portability, Security, and Intelligence made many realize just how much Veeam has evolved. Whe

A common request from customers with large AWS environments has been how best to set up IAM roles for Veeam Backup for AWS. Customers with dozens or hundreds of accounts had to configure templates or scripts to create roles in each of their accounts and then add them to Veeam. This can be a time-consuming endeavor at scale, and I created a solution that uses native AWS services to automate the process. Thankfully, that solution only applies to previous versions of Veeam Backup for AWS now.Veeam Backup for AWS v9 now has built-in support for AWS Organizations, allowing you to easily protect all of your AWS resources regardless of the size or complexity of your organization. Let’s take a look at this new feature and how it works. Laying the foundationBefore you can leverage this feature, you

Certificate improvementAbout more news features on new “VMware(R) Cloud Foundation 9” I think one of all need mension is the unified certificate management within VCF Operations.This feature facilitates smooth, non-disruptive certificate updates, automatic renewals with multiple Certificate Authorities, and the ability to import externally signed certificates.Consequently, it resolves operational difficulties, enhances security measures, and ensures greater compliance. Certificate Alerts Tab Do you remember when your vCenter’s certificate expired resulting in a Veeam backup crash and related panic?Now with this long-awaited and long-requested feature, this will no longer be a problem we have to face !

Hello everyone, I'm continuing my exploration of Veeam v13. Today, I'm sharing with you a presentation of the Web UI and the thick client. In this first section, we will cover:Configuring a component via the WebUI Configuring a component via the thick client Configuring a backup job from the WebUI Performing a restore from the WebUIEnjoy the read!Find my previous article here :  1. Veeam Software Appliance WEB UI / Console⚠️ Reminder: We are testing a beta version here. Some features are still missing, incomplete, or may not be included in the final release.Dep

As promised in Part XV, today we will be looking at common environment architecture topics. These are very important parts of planning and operating a secure backup environment.Of course, the backup environment cannot be viewed in isolation from the rest of the IT landscape. Everything interacts and influences each other. There are specific requirements for backup, but most of the considerations in this text also apply to the production environment. However, I will still refer to the backup environment in this text.But – as always – it is not an aspect that alone leads to a secure environment. Therefore, in this context we will also look at some side aspects in general.Designing an effective backup environment architecture is pivotal for maintaining data integrity, availability, and security in today's data-centric world. What are the main threats to backup data?Wrong placement of backup environment components

If Oracle backup provided over backup job with application aware processing, has limitation with restore i regards of number of channels. Restore via gui is possible over Veeam Enterprise and via Veeam Oracle Explorer:Veeam Enterprise Manager is restore possible only via 1 channel Veeam Oracle Explorer by default has set 1 channel To change number of channels for Veeam Enterprise manager is not possible, but is possible to change number of channels via Veeam Oracle Explorer via config.xml file: %programdata%\Veeam\Backup\OracleExplorer\Config.xml Content example: <Veeam>  <OracleExplorer>    <Oracle RmanCopyJobChannelsCount="4" />    <Oracle RmanCopyJobChannelsByDatafilesCount="true" />  </OracleExplorer></Veeam>  Our tests speed:>> - 1 channel: - 115 GB, 18 mins 109 MByte/sec

Hello Veeam Community, I want to share a recent experience I encountered with the Linux-based Veeam Backup Appliance (used via plug-in to protect GCP workloads). This is part of our growing environment where we use Veeam Backup for Google Cloud. Issue Summary:Yesterday, I ran into a serious issue where the backup appliance became unresponsive. Here’s what happened: Problem Description:Appliance DB disk was full this caused log files to pile up. Logs were not auto-deleting, consuming critical DB disk storage space. The appliance showed the following errors below: "Failed to get server IP address" "Backup Appliance is unavailable"The Veeam plug-in was unable to communicate with the appliance, and no backups could proceed at that point. 

I had the chance to spend some of my evenings on adding some more functionality to my little pet project… or as I have been referring to it, the RVtools for your Cloud and Kubernetes environments and platforms. We already had the ability to grab details on your Kubernetes, AWS and Azure resources, I also did add some Veeam Backup & Replication inventory as well. With this 0.0.3 release we added Google Cloud Platform (GCP) and Terraform State File inventory. But probably the biggest feature has been around the user experience. The concept of the tool was to be able to use either the CLI or browser and this remains the same but the UI now can be used with a lot more flexibility. I did a full on demo session of the state of the project and would love to get your feedback. What should I add next? What are we missing? What doesn’t work?  Project can be found here - 

 Recién integrándome al grupo, me llamó la atención el sistema de insignias (badges) en el perfil de muchos usuarios. Esa curiosidad me llevó a investigar más sobre cada una, y aquí te comparto lo que descubrí 👇En la Comunidad Veeam, tu participación no pasa desapercibida. Cuanto más compartes, ayudas o lideras... más visibilidad y reconocimiento puedes ganar. Desde certificaciones hasta hackathons, hay una insignia para cada perfil.🧑‍🤝‍🧑 Comunidad y Reconocimiento🏅 Medalla 🎯 ¿Cómo la consigues? 🐼 Veeam Legend Ser constante, activo y colaborativo en el Hub 🛡️ Veeam Vanguard Postularte con aportes técnicos relevantes (blog, labs, presentaciones) 🧠 Top Contributor Publicar y responder con contenido útil y validado por la comunidad 👑 Top Panda (10

 Over the last few years, the time to execute ransomware attacks dropped 94%; now, criminals take, on average, just 3.85 days to deploy a ransomware attack.On the other side, according to the “Veeam Ransomware Trends – 2023 Global Report”, recovering the affected environment after a ransomware incident takes an average of 3.3 weeks of work, equivalent to 136 business hours of business downtime.Here is the link for this Veeam’s report:

In part I of this series we have seen how to move a tape library with all data to another VBR server which has already data on it.https://community.veeam.com/blogs-and-podcasts-57/veeam-and-tape-i-moving-a-tape-library-with-data-from-one-vbr-server-to-another-1654 The open question was, how do I get my tapes with data to the correct media pools without losing my data…When you select to move a tape to a media pool the following message appears:So, the tapes are marked free, and the data is lost when a tape is moved? A quick check of the helpcenter and the forums says exactly this…

Scenario:Very recently a customer asked me if Veeam could leverage Data Domain mtree replica for DR purposes.Of course, the answer is YES! While this idea is not new, I thought it would be a good reminder of Veeam’s backup import capabilities. Steps:You must use Data Domain repository on the source site. It most likely will be declared as a DDboost share. The mtree should be replicated to the DR site. Note

VM networking was much simpler. In VMware, there is a lot of planning when managing the network. You create virtual switches per host and assign properties like MTU size, VLAN, etc and pair those with physical NICs. You setup VMkernel NICs with specific roles to control host traffic. With Scale computing, you set a native VLAN on the physical switches and use standard VLAN Trunking to the host. You assign an IP on the management network which uses the default VLAN and then tag VMs on their virtual NICs directly, skipping all the complex concepts of a vSwitch. A separate Linux bridge with different physical NICs or a subinterface with a VLAN is used for the cluster backplane used for storage and inter-node cluster communication depending on how many NICs the host has. If a VM needs to be on multiple networks, you can assign one NIC with a certain VLAN, and another NIC with a different VLAN. You can also choose not to tag at the port and let the guest OS setup VLAN tagging, simil

In some situations/scenarios it is absolutely necessary to move the Veeam Configuration Database (PostgreSQL) to another hard disk of the Backup & Replication Server (e.g. if the C: partition is too small). After installation, the Postgres databases are located under: C:\Program Files\PostgreSQL\xx\data (Unfortunately, the path cannot be changed during the Veeam installation).Moving the PostgreSQL database is actually quite simple and can be done with pgAdmin. Before you start the migration, you should create a VMware snapshot and/or a Veeam Configuration Backup.Download pgAdmin from their website (pgAdmin – PostgreSQL Tools) and install it on the Veeam Backup & Replication Server.

 We've been a certified Scality ARTESCA partner for almost six months. In addition to my lab installations, I've already deployed four productive ARTESCA systems for our customers, both single-node and three-node cluster systems.Since the beginning of June, version 3.1.1 has been available for Scality ARTESCA.  Documentation & Release NotesThe corresponding documentation and release notes can be found at https://documentation.scality.com/ . Access is via OneLogin with an existing Scality account. 

Using S3 Object Lock’s Governance mode with Veeam Backup & Replication v12.1 Veeam Backup & Replication (VBR) v12.1, which was launched in December of 2023, has many great features and new capabilities.  One of those features is the ability to use S3 Object Lock’s Governance mode when you setup an object storage repository to be immutable.  The purpose of this blog is to introduce you to the Governance mode and how to use it within VBR 12.1.So, what is Governance mode?  To answer that I first need to briefly explain S3 Object Lock.  It is a feature of S3 and S3 Compatible object storage to prevent objects from being deleted or modified until the object lock retention has been met and the lock expires. There are two modes for the object lock retentionCompliance GovernanceCompliance mode has been used by Veeam Backup & Replication since v10 of VBR was released in February of 2020.  C

One of the standout features in Veeam’s arsenal is the ability to verify backups in an isolated VMWare and / or Hyper-V environment using SureBackup and DataLabs. These tools allow organizations to automatically spin up virtual machine and agent-based backups in a secure, sandboxed network…. often referred to as a “Clean room”, where Veeam can (but not limited to):Ensure the backup does not contain any malware / ransomware / virus’ Check for file system consistency Verify application services start as expected Perform custom script checks to validate functionalityWhile these capabilities shine in an on-premises VMware and Hyper-V environment, verifying backups in

For those with IBM Flash System Storage, you will have noticed a surprise at the end of your 12.2 upgrade. It will ask you to install the plug-in on your Veeam server at the end of the process. It will also tell you that backup jobs may not work properly until you do. The first take away is don’t start this upgrade at 3PM on a Friday thinking you have plenty of time to upgrade your entire Veeam infrastructure before the end of the day.  This extra step didn’t take too long but still added some extra time to the process. As with anything, check the release notes, and compatibility with all hardware, software, and firmware before doing installs on production servers. 

I had the discussion two times last week, so I think it is worth sharing here.You may have noticed, VMware deprecated image level backup of its vCenter Appliance (VCSA) with vSphere 7. What does this mean? Basically, it is still supported to do image level backup and restore with VCSA 7.0. But it will not be supported in future releases. Notice that U1 and U2 are still 7.0 versions. With 7.n, with n>0, VMware will not support image restore of VCSA any more. From my perspective, this step was taken because problems arise when restoring this Linux appliance. I have seen many appliances requiring a filesystem check after restore or crash. When you are lucky, everything works fine afterwards. If not, you have to file a support ticket.To avoid this, VMware offers a new way for VCSA backup. Since 6