Skip to main content
Question

How can I configure Veeam to secure backups for Leveret Products in a hybrid environment?

  • January 25, 2025
  • 10 comments
  • 121 views
J

I am working on setting up Veeam for a hybrid IT environment that includes Leveret Products (client's website), consisting of both on-premises servers and cloud resources. Security is a top priority due to the sensitivity of the data we handle. I am looking for guidance on best practices for securing backup repositories, enabling encryption, implementing access controls, configuring immutable backups to protect against ransomware, and ensuring secure data transfer between on-premises and cloud environments. Additionally, any tips on audit and monitoring features in Veeam to enhance security would be highly appreciated

Chris.Childerhose
AndrePulia
Tommy O'Shea

10 comments

J
  • josephmills
  • Author
  • Not a newbie anymore
  • January 25, 2025

?

N
  • novaspeaks
  • New Here
  • January 25, 2025

Set up immutable backups by configuring immutable repositories on-premises or utilizing object lock in cloud storage to defend against ransomware attacks.

Implement role-based access control (RBAC) to limit access to backup systems and ensure only authorized users can make changes.

Isolate backup networks or use VLANs to separate backup traffic from production traffic, and secure data transfer with VPNs or encrypted connections.

Regularly update repository security settings, apply patches to Veeam components, and enable two-factor authentication (2FA) for accessing the Veeam management console.

I hope this makes sense

AndrePulia
Tommy O'Shea
J
  • josephmills
  • Author
  • Not a newbie anymore
  • January 25, 2025

Your suggestions are very helpful and cover the key steps for securing backups. How can I use Veeam to safely back up data for a website like this page and keep it protected from ransomware?

AndrePulia
N
  • novaspeaks
  • New Here
  • January 25, 2025

Your suggestions are very helpful and cover the key steps for securing backups. How can I use Veeam to safely back up data for a website like this page and keep it protected from ransomware?

Yeah of course you can. As I said earlier you need to set up immutable backups. 

AndrePulia
lukas.k
Forum|alt.badge.img+12
  • lukas.k
  • Veeam Vanguard
  • January 25, 2025

Hi ​@josephmills,

Regarding Windows OS hardening for backup infrastructure components (VBR server, repositories, proxies etc.) I wrote a script to implement around 100 CIS compliant policies to harden the OS, maybe that helps:

There are also other guidelines that might help within the forum, here’s one from Marco:

You can always refer to our community hub “Cyber Security Space” with a strong focus on security topics, there’s a lot of content available.

 

Best

Lukas

LK | Veeam Vanguard | VUG Leader - Cyber Security Space | Security Specialist
AndrePulia
Iams3le
Dynamic
AndrePulia
Forum|alt.badge.img+9
  • AndrePulia
  • Veeam Vanguard
  • January 29, 2025

@josephmills you can also use the security best practices https://bp.veeam.com/security/ as a reference to implement

André Pulia - VMCA | VMCE | VMCT |Veeam Vanguard | VUG Leader Brazil | ObjectFirst ACE | HPECI | VCI | Nutanix Certified Instructor | Twitter: @andrepulia | Blog Site – https://pulia.com.br | https://www.credly.com/users/andre-pulia
Tommy O'Shea
A
  • Anonymous
  • February 7, 2025

Indeed your suggestions are helpful & based on logic. I took the backup of website, how can I use to securely backup my data so that there can’t be another loss of data or any issue of ransomware which can harm the intergrity of the website!

AndrePulia
AndrePulia
Forum|alt.badge.img+9
  • AndrePulia
  • Veeam Vanguard
  • February 12, 2025

@josephmills I’m reading again your post, and remember to inform you, a VMCE class will help you in several itens that you liested. 
Have a look at the course desciption https://www.veeam.com/veeam-backup-replication-v12-configure-manage-and-recover_ds.pdf 

and also 

Veeam University

https://veeamuniversity.com/

if you are a partner, you can access learning content on:

Veeam IQ  Your guide to Veeam learning

https://propartner.veeam.com/veeam-iq/

 

 

André Pulia - VMCA | VMCE | VMCT |Veeam Vanguard | VUG Leader Brazil | ObjectFirst ACE | HPECI | VCI | Nutanix Certified Instructor | Twitter: @andrepulia | Blog Site – https://pulia.com.br | https://www.credly.com/users/andre-pulia
Tommy O'Shea
lukas.k
A
  • Anonymous
  • February 23, 2025

As per 

Indeed your suggestions are helpful & based on logic. I took the backup of website, how can I use to securely backup my data so that there can’t be another loss of data or any issue of ransomware which can harm the intergrity of the website!

As i said earlier I took the backup of the website foe Rechner . Its a tool website & involves coding at the backend. I took the backup of the site, since wordpress websites are prune to attackers. How can i ensure that it will be safe from future ransomeware attacks & mal practices which are a common thing now adays

AndrePulia
Mohamed Ali
Forum|alt.badge.img+2
  • Mohamed Ali
  • VUG Leader
  • February 24, 2025

In additional to hardening the VBR server and ensuring repositories are immutable, maintain a multi-layered backup plan and leverage Insider thread protection from Cloud connect service providers which can help to prevent any accidental deletion or insider attack. Follow 3-2-1-1-0 Golden Backup Rule 

We have implemented Zero trust architecture in our Veeam infrastructures and ensuring that no processes other than Veeam are allowed to run. 

Mohamed Ali | VUG leader | VMCE 2024, VCP-DCV, CCP-V
AndrePulia
Tommy O'Shea
lukas.k
Terms & ConditionsAccessibility statement