MicrosoftDocs
diff --git a/‎articles/backup/backup-azure-private-endpoints-concept.md
Lines changed: 3 additions & 1 deletion b/‎articles/backup/backup-azure-private-endpoints-concept.md
Lines changed: 3 additions & 1 deletion
diff --git a/‎articles/backup/backup-azure-private-endpoints-configure-manage.md
Lines changed: 39 additions & 1 deletion b/‎articles/backup/backup-azure-private-endpoints-configure-manage.md
Lines changed: 39 additions & 1 deletion
diff --git a/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/create-private-endpoint-in-secondary-region.png
55.4 KB b/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/create-private-endpoint-in-secondary-region.png
55.4 KB
diff --git a/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/select-region-for-cross-region-restore.png
90.6 KB b/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/select-region-for-cross-region-restore.png
90.6 KB
diff --git a/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/select-sub-resource.png
89.2 KB b/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/select-sub-resource.png
89.2 KB
diff --git a/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/select-virtual-network.png
90.4 KB b/‎articles/backup/media/backup-azure-private-endpoints-configure-manage/select-virtual-network.png
90.4 KB
@@ -3,7 +3,7 @@ title: Private endpoints for Azure Backup - Overview
 description: This article explains about the concept of private endpoints for Azure Backup that helps to perform backups while maintaining the security of your resources.
 ms.topic: conceptual
 ms.service: backup
-ms.date: 03/04/2024
+ms.date: 06/14/2024
 author: AbhishekMallick-MS
 ms.author: v-abhmallick
 ---
@@ -45,6 +45,8 @@ This article describes how the [enhanced capabilities of private endpoints](#key
 
 - You can create DNS across subscriptions.
 
+- You can create a secondary private endpoint before or after having protected items in the vault. Learn [how to do Cross Region Restore to a private endpoint enabled vault](backup-azure-private-endpoints-configure-manage.md#cross-region-restore-to-a-private-endpoint-enabled-vault).
+
 ## Recommended and supported scenarios
 
 While private endpoints are enabled for the vault, they're used for backup and restore of SQL and SAP HANA workloads in an Azure VM, MARS agent backup and DPM only. You can use the vault for backup of other workloads as well (they won't require private endpoints though). In addition to backup of SQL and SAP HANA workloads and backup using the MARS agent, private endpoints are also used to perform file recovery for Azure VM backup.
 
@@ -3,7 +3,7 @@ title: How to create and manage private endpoints (with v2 experience) for Azure
 description: This article explains how to configure and manage private endpoints for Azure Backup.
 ms.topic: how-to
 ms.service: backup
-ms.date: 03/26/2024
+ms.date: 06/14/2024
 author: AbhishekMallick-MS
 ms.author: v-abhmallick
 ---
@@ -211,6 +211,44 @@ To perform Cross Subscription Restore to a Private Endpoint enabled vault:
 4. In the **Virtual Network** section, select the **VNet** of the target VM that you want to restore across subscription.
 5. Create the **Private Endpoint** and trigger the restore process.
 
+#### Cross region restore to a private endpoint enabled vault
+
+You can create a **Secondary Private Endpoint** before or after adding protected items in the vault.
+
+To restore data across regions to a Private Endpoint enabled vault, follow these steps:
+
+1. Go to the target *Recovery Services Vault* > **Settings** > **Networking**, and ensure that Private Endpoint is created with the target *VM VNet* before protecting any items.
+
+
+     If the private endpoint is not enabled, [enable it](#deny-public-network-access-to-the-vault).
+
+2. On the **Private access** tab, [create *Private Endpoints* in the *secondary region*](#create-private-endpoints-for-azure-backup).
+
+   :::image type="content" source="./media/backup-azure-private-endpoints-configure-manage/create-private-endpoint-in-secondary-region.png" alt-text="Screenshot shows how to create private endpoints in a secondary region." lightbox="./media/backup-azure-private-endpoints-configure-manage/create-private-endpoint-in-secondary-region.png":::
+
+3.	On the **Create a private endpoint** blade, on the **Basics** tab, select the **Region** as the secondary region of the target VM to which you want to do the *Cross Region Restore* operation.
+
+     :::image type="content" source="./media/backup-azure-private-endpoints-configure-manage/select-region-for-cross-region-restore.png" alt-text="Screenshot shows how to select the region for restore to the secondary region.":::
+ 
+4. On the **Resource** tab, select the **Target sub-resource** as **AzureBackup_Secondary**.
+
+   :::image type="content" source="./media/backup-azure-private-endpoints-configure-manage/select-sub-resource.png" alt-text="Screenshot shows how to select the sub resource as Azure Backup Secondary.":::
+
+5. On the **Virtual Network** blade, select the **Virtual Network** of the target VM to which you want to do the *Cross Region Restore* operation.
+
+   :::image type="content" source="./media/backup-azure-private-endpoints-configure-manage/select-virtual-network.png" alt-text="Screenshot shows how to select the virtual network of the target VM for Cross Region Restore.":::
+ 
+   >[!Note]
+   >You can add a maximum of **12** Azure Backup Secondary Private Endpoints to a vault.
+
+6. [Create the private endpoint](#create-private-endpoints-for-azure-backup) and [start the restore process from the secondary region](sap-hana-database-restore.md#cross-subscription-restore).
+
+
+
+
+
+
+
 ## Deleting private endpoints
 
 To delete private endpoints using REST API, see [this section](/rest/api/virtualnetwork/privateendpoints/delete).