Blogs and podcasts
Bring your knowledge and expertise while creating blogs and podcasts
- 530 Topics
- 3,983 Comments
I spent some time in testing a new great feature in v11: Hardened Repository. Read here about:What is immutability is about Requirements Setup How it works What is immutability is aboutImmutability in this context means, a backup file cannot be changed or deleted without having root access within hosing Linux OS. So, even the backup administrator is not able to delete backups on such a repository.Why is this important? Think about ransomware. This software is that smart these days, it is able to recognize backup systems. It can trigger tasks like deletion of backup files. But when they are immutable, this cannot be done! RequirementsWhat is needed to get immutable backups? First of all: Veeam Backup&Replication v11. This is the first version supporting hardened repositories. Secondly a Linux server hosting repository volumes.What about the filesystem? Veeam is using immutable flag. So every filesystem supporting this flag can be used. These are pretty much all. Veeam supports refli
Failed to connect to Veeam Backup and Replication server: How to fix Remote Channel Sink UriNotPublished, remote connection refused, and failed to start the service
Veeam Backup and Replication is comprehensive data protection and disaster recovery solution which is capable of creating image-level backups of virtual, physical servers, cloud machines, and restoration as well. You may encounter the following errors when installing the Veeam backup and replication tool “VEEAM service is unable to start, error 1064: An exception occurred in the service when handling the control request”. Therefore, I will be showing you the steps on how to resolve this issue very quickly. Here is a detailed link to this post.If you are here reading this troubleshooting guide "new Veeam Backup server but then Veeam won’t start", this means you must have recently installed Veeam Backup and Replication Server or must have recently upgraded it. As you can see from the images below, these are some errors I encountered while installing Veeam Backup and Replication in my test environment before deployment.The "Failed to start service / connect to Veeam" and "connection refus
Hi Everyone, Vulnerabilities wait for no-one, so whilst some are enjoying a weekend off, others are patching to protect against the latest risk. Log4j. This post has two objectives. Firstly I’m sharing my write up regarding the issues I’m aware DO have an impact to VMware, secondly what does this mean to the Veeam products… First up: VMwareI don’t often dedicate a blog post to a particular security vulnerability, but since it has scored a perfect 10 CVE rating, it’s important to be aware ASAP.VMware have identified multiple products that utilise the Apache technology that are vulnerable to the Log4j vulnerability. What is this “Log4j” vulnerability?A Remote Code Execution (RCE) has been discovered in Apache’s Log4j Java Library. It is possible to insert maliciously crafted strings into fields that will be logged, which then leverages the “message lookup substitution” function of Log4j to execute code. This can be used to deploy and execute payloads, or execute commands at a heightened
More and more companies are depending totally of their ICT infrastructure (on-premises, private cloud, hybrid cloud, public cloud) …Ransomware and hackers are more popular than ever…Therefore one of the most important things is that the company has a solid backup strategy, so we can fall back at those in case of disaster or being impacted by ransomware or hackers.You can find very often the 3-2-1 rule. I suggest every customer or company to even go a step further : apply the 3-2-1-1-0 rule !3 : Maintain at least 3 copies of your data By three copies, I mean that in addition to your primary data, you should also have at least two more backups.Why?The chance that something is going wrong with 3 devices at the same time is a lot smaller than with 2 devices, especially when the primary backup is often situated close to the primary data. In case of a disaster the primary data and primary backup could be gone. The secondary backup is often situated somewhere else and could be the solution in
These days I saw a strange error that makes every backup failed. I thought this would be interesting to share. SituationThere were a few jobs running each day. From a point in time all jobs failed. Error that was shown in console was: [Error Unhandled exception was thrown during licensing process] I checked licensing of course. All hosts were licensed using perpetual licensing. No instances were licensed separately.SolutionIt turned out to be no license problem at all. What happened was, password of the user that was used for connecting to VMware vCenter was changed. After updating the new password in Veeam Manage Credentials too, everything works fine again.
Continuous Data Protection (CDP) is a new feature provided by the upcoming Veeam VBR v11 mainly addressed for Tier-1 applications that cannot deal with data loss.Announced for a long time, the CDP technology allows you to configure the RPO Per Second and this can be done leveraging vSphere API for IO Filtering (VAIO). Install the Continuous Data Protection filter to hosts First step is the installation of the CDP filter to the hosts member of the cluster. The installation takes place in the Managed Servers section under Backup Infrastructure area. Before proceeding make sure your Veeam Server has been registered in your DNS infrastructure.Once the vCenter Servers have been added to the Veeam infrastructure, right click the source side vCenter and select Manage I/O filters. Configure the CDP Proxy To leverage CDP, it is required the deployment of the new CDP Proxy to handle the data. Although you can install different roles in the chosen Windows Server, make sure CDP Proxy is not alread
Microsoft dropped a surprise on us today by releasing Windows Server 2022 to no fanfare at all. It’s been released today 18th August 2021, it will have mainstream support until the 13th October 2026 and will be considered end of life on the 14th October 2031 (how are we talking about the 2030’s already?!). This is evidenced in Microsoft’s updated Windows Server Release Information document.If you’re looking to grab an evaluation copy of Windows Server 2022 you can do so here. Alternatively if you have a suitable agreement with Microsoft you can also download a copy from VLSC or MSDN.Interested to learn what’s new in Windows Server 2022? You can check out Microsoft’s post on the subject here. IMPORTANT: Microsoft are making TPM 2.0 support mandatory, if you’re looking to install onto existing hardware, be sure you meet the hardware requirements. Supported Platforms Realistically it’s going to be premature to start migrating your entire environment to Windows Server 2022, but in the inte
If you are a certified IT pro, trainer or blogger, Veeam is happy to provide you with a FREE NFR license (Not-For-Resale keys).This license allows for non production use of Veeam Availability Suite in your home lab, without any feature limitations for one year and 20 workloads (VMs/Servers/Workstations) or of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations for up to 10 users.Here is a list of IT members eligible for a free Veeam NFR license key:Veeam Certified Engineers (VMCEs) AWS Heroes AWS Community Builders AWS Heroes AWS Certified Pros Google Cloud Developer Advocates VMware vExperts VMware Certified Professionals (VCPs) VMware Certified Advanced Professionals (VCAPs) Microsoft Most Valuable Professionals (MVPs) Microsoft Most Valuable Professionals - Office 365 (MVPs) Microsoft Certified Solutions Experts (MCSEs) VMware, Microsoft, AWS trainers And more!Free NFR for Veeam Availability Suite https://go.veeam.com/free-nfr-veeam-availability-su
Error 1064 - An exception occurred in the service when handling the control request : No connection can be made because the active machine rejected it
For some reason and to come to speed with all the Veeam components, I decided to revive my Veeam Lab and during the process, I encountered the following error “Error 1064 - An exception occurred in the service when handling the control request : No connection can be made because the active machine rejected it “. Before I proceed to fix this issue, I would love to discuss the capabilities of Veeam for anyone that may stumble on this article. Veeam Backup & Replication is comprehensive data protection and disaster recovery solution that provides a centralized console for administering backup, restore, replication operations in all supported platforms (virtual, physical, cloud). Regardless of what your needs are ranging from flexible hybrid cloud capabilities from AWS, Azure, and Google Cloud, or the most robust ransomware protection and recovery options. Veeam brings hardened immutable storage options, dependable cloud-native backup options, Continuous Data Protection, and much more
While attending the VeeamON conference in Las Vegas back in May, Veeam announced they will be releasing Veeam Backup & Replication (VBR) v12 later in the year, and gave several sessions presenting what some of those features will be in the new release. I thought I’d do a write-up of what v12 features I’m looking forward to most, as well as provide a few extra lines of other notable features coming.Security-Veeam is upping its security game by implementing Multi-Factor Authentication (MFA) and Group Managed Service Accounts (gMSA). MFA is self-explanatory. From the VBR Menu > Users and Roles option, a Security window opens for you to select MFA for your Veeam user accounts (see figure below). But what about the gMSA? gMSA is a fantastic concept as it allows Veeam to use Active Directory service accounts while not storing the password locally on the Veeam server (i.e. when using for AAIP). Instead, VBR retrieves gMSA passwords on-demand from organization domain controllers. Platfo
I was recently made aware that Veeam have released the 2021 edition of the Veeam Certified Engineer (VMCE) exam. If you’ve already got a VMCE 2020 certification, or have taken the VMCE 2020 training course within the past year, (or even been lucky enough to already take a seat on the VMCE 2021 training course) you’re eligible to take the exam.To take the exam simply head to the VMCE certification page, sign in with your company email address that was used for either your training course or previous exam and you should see the below.Description: An image showing the VMCE certification page with a button labelled “Manage VMCE 2021 Exam”Simply click on “Manage VMCE 2021 Exam” and you’ll be taken to the PearsonVUE website to organise either a remote exam or in-person exam. The Exam Online Proctor Experience Over the course of the pandemic, PeasonVUE have got repeatedly better at delivering the remote training sessions, they’ve slowly adapted their security measures too, when the pandemic h
So I had a unique support case recently, a customer using Veeam Agent for Linux with mixed success, they had one particular server that worked fine during implementation and then after a week the backups had started to immediately fail. The server was unable to load the veeamsnap module.Veeam themselves have a great article dealing with this in general and it helps resolve the majority of the cases, link here.One point I believe this article doesn’t properly discuss though is why this can happen, especially when it previously worked properly. To understand this we need to know a bit about how Veeam works with its Linux Agent.To fully understand how the Veeam Agent for Linux works, the first question we need to answer is, what is “veeamsnap”? veeamsnap is a Linux kernel module used by Veeam to create volume snapshots. Due to the huge variety of Linux systems and updates supported by Veeam, there are some pre-requisites that must be met for veeamsnap to function, these are documented her
When you will download data from Exchange Online – Microsoft will throttle your traffic. In previous years to change it, you should open a support ticket to MS. Now you can temporarily change this directly on Microsoft 365 admin center. This can be especially useful for initial full backup for multiple mailboxes. How to setup this? Go to the Microsoft 365 admin center and in the top right corner open help and just type “ews”. Then you have to run tests as a results you will have option to select duration 30, 60 or 90 days with higher throughput speed.select one of available value and update settings.
It’s not big news that Microsoft is going to disable Basic Authentication in October 2022. Thanks to @Mildur we already know that What I didn’t get at that time, Microsoft is already randomly disabling Basic Authentication for customers/tenants; of course only if Basic Authentication isn’t used at all.The process is: We’ll randomly select customers with no usage in any, or all affected protocols, send them a Message Center post informing them that in 30 days we’re going to turn off Basic Auth. 30 days later, we’ll turn it off and send another Message Center post to confirm it was done. Customer protected... check!→ https://techcommunity.microsoft.com/t5/exchange-team-blog/basic-authentication-and-exchange-online-june-2021-update/ba-p/2454827The StoryNot that bad if you don’t use Basic Authentication, but I did run into a problem with that. I was able to successfully setup Veeam Backup for Office365 with Legacy protocols (Publicfolders )and after a week it suddenly stopped working; all
I had the discussion two times last week, so I think it is worth sharing here.You may have noticed, VMware deprecated image level backup of its vCenter Appliance (VCSA) with vSphere 7. What does this mean? Basically, it is still supported to do image level backup and restore with VCSA 7.0. But it will not be supported in future releases. Notice that U1 and U2 are still 7.0 versions. With 7.n, with n>0, VMware will not support image restore of VCSA any more. From my perspective, this step was taken because problems arise when restoring this Linux appliance. I have seen many appliances requiring a filesystem check after restore or crash. When you are lucky, everything works fine afterwards. If not, you have to file a support ticket.To avoid this, VMware offers a new way for VCSA backup. Since 6.5 it is possible to run file-based backups and restore of VCSA. Since 6.7 this can be scheduled. With this, new protocols are supported as well: FTP, FTPS, HTTP, HTTPS, SFTP, NFS, or SMB. Pleas
More en more companies are being a victim of malware, ransomware or even hackers.It is always important to implement the golden 3-2-1-1-0 rule (in detail explained in a former post of me - 3-2-1-1-0 Golden Backup Rule | Veeam Community Resource Hub).Next to this rule, one of the first things to keep in mind is to protect as much as possible your backups because those can save you when you are being attachked and you need them.The first thing that comes in mind, is to harden your Veeam Backup & Replication server as much as possible.I will give you here 10 tips you can implement. There are of course more things possible, but it's a start.1 - Do not domain-join the backup server in the production domainA best-practice is to put the VBR server in a workgroup and not AD domain-joined for smaller environments.Why? If ransomware is nested in a roaming profile of a domain-user connecting to the domain-joined VBR server, this malware can be activated on the VBR server and impact the backup
It feels like everyone is always trying so hard to be perfect, I’m certainly not! But I’m happy to learn from and share my mistakes. I was messing about recently with Veeam Disaster Recovery Orchestrator and made some changes to my lab, and all was fine when I shut down. A few days later I fired up the lab again, but my Veeam Backup & Replication server wouldn’t start its core “Veeam Backup Service” service. I over-engineered my response expecting it to be something far more complex than it actually was, and here’s my story. Hour 1: The Service Won’t StartI fired up my Veeam Backup & Replication server, ready to write my next blog post, uh-oh, the service won’t start! I jumped into the logs and couldn’t see anything of any note, really!This was my log, if you don’t load/can’t read images, the final three lines contained the following:[db] Minimal supported database server version is 10.0.1600.22[db] Connecting to SQL Server (CurrentUser=[NT AUTHORITY\SYSTEM], ServerInstance=[W
I see one more change in VBR V11 Beta - the handling of exported backups and of backups with no associated backup job. Exported Backups:Up to V10 exported (disk) backups were put in the section “Disk (imported)”In V11 the exported backups are put in another section - “Disk (VeeamZIP)”. Up to V10 I have seen this section when creating a VeeamZip archive intentionally only. Backups from deleted backup jobs:Backups which were created from deleted backup jobs were put in the section “Disk (Imported)”, too. In V11 there is a new section: “Disk (Orphaned)” I think this describes the status of these backups much better than before.
For my first Veeam Community post, I thought I would share with you all something I’ve been doing for over a decade - an exam prep Study Guide; this one being for VMware VCP-DCV 2021. For those who haven’t followed me over the years, I started creating these “outlines”, i.e. Study Guides, for my own benefit to help me with tech cert exam prep. I then thought others in the community may benefit using them, so I decided to share them online. I generally post them on Twitter, so if you’d like to follow me, you can do so from here.When reviewing the VMware ‘Blueprint’ for the DCV 2021 exam as compared to the 2020 exam, I was initially overwhelmed by the additional content for 2021. As I dove deeper into the 2021 exam Objectives, it turns out a lot of them were similar to what was asked to know for the 2020 exam, so it wasn’t too bad to review. As with most of my Guides, I enjoyed learning about the new tech VMware implemented with vSphere 7 - e.g. Identity Federation & Lifecycle Manage
Requirements and Limitations CDP has a set of requirements and limitations. RequirementsThe following requirements apply to CDP:CDP is included in the Veeam Universal License. When using a legacy socket-based license, the Enterprise Plus edition is required.For supported platforms, see Platform Support. For supported source and target datastores, see Veeam CDP Source and Target. All hosts in a cluster must be of the same major version: 7.x or 6.x (6.5, or 6.7, or a combination of 6.5 and 6.7 is supported). In turn, all clusters managed by the same vCenter Server must also be of the same major version. VMs on the same cluster must be protected with CDP only by one backup server. The machine where the backup server resides must have at least 16 GB RAM. VMs that you plan to protect must not have snapshots at the moment when the CDP policy starts for the first time. Network between infrastructure components required for CDP must be 1 Gbps or faster. For high loaded systems, 10 Gbps and MTU
Greetings friends, Veeam Backup for Microsoft Office 365 v5 was released very recently, and among many new functionalities like Microsoft Teams Protection and Scalability enhancements, I have seen that there are certain advanced functionalities that can be performed using RESTful API. It is not the first time that the development team of this product launches API functionalities that later move to the graphic part in case there is good acceptance.In particular, the one we are going to focus on today, is a functionality that has been requested for a long time, it is about receiving an email notification for each restoration operation that is performed on the elements where the audit is enabled. Audit Diagram in Veeam Backup for Microsoft Office 365 v5Before we start with the subject, I think a diagram about how all this works can help us better understand what we are going to do, and activate: How to Enable Auditing of protected items with Veeam Backup for Microsoft Office 365 v5We have
It is not uncommon to reset root password in VMware VCSA (vCenter Service Appliance). This can be necessary when account is locked or password is expired. Normally, you have to shut it down, enter GRUB and edit start parameter to boot into bash. There you can reset root password. Afterwards you boot VM again. Here is the link to this procedere: https://kb.vmware.com/s/article/2147144With vCenter 6.7 U1 it us much easier! Since then it is possible to use a Single-Sign On (SSO) administrator account (for example: email@example.com) to login to Appliance Interface (Port 5480) and shell. And exactly this can be used to reset the root password. In short it goes like this: Take a snapshot/backup of VCSA - it is always a good idea to start with a backup Login as a SSO-administrator using a SSH client or console. Enable and start shell: shell.set --enable true shell Change root password sudo passwd root DoneHere is the link to the more detailed VMware KB-article: https:/
The virtual machines I use for the deployment are generated from a Template (Golden Image) through a configuration file unattend.xml Answer files (unattend.xml)https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/update-windows-settings-and-scripts-create-your-own-answer-file-sxs What is Windows System Image Manager?https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-vista/cc766347(v=ws.10) Useful links for sizingVeeam Architects Site https://www.veeambp.com/ Veeam Size Estimation Tool (VSE)https://vse.veeambp.com/#/ The Restore Point Simulatorhttp://rps.dewin.me/ Veeam Ports Calculatorhttps://www.veeambp.com/ports/ REFS Calculatorhttp://dewin.me/calculator/ Bandwidth Calculatorhttp://rps.dewin.me/bandwidth/ Pricing calculator for small businesshttps://www.veeam.com/pricing-calculator NAS Calculatorhttps://cloudoasis.com.au/nas-calculator/ Veeam Clikable Demoshttps://veeamclick.be/ Prerequisite: System Requirements - Veeam Backup Guide for vSphere
Login to the community
Log in with your Veeam account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.