You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
2. Select the option **Transfer using my own disks**.
73
+
74
+
>[!NOTE]
75
+
>We recommend using the Azure Data Box option to transfer initial backup data offline. This option saves the effort required to procure your own Azure-compatible disks by delivering Microsoft-proprietary, secure and tamper-proof Azure Data box devices to which backup data can be directly written to by the MARS Agent.
76
+
77
+
3. Click **Next** and fill in the inputs carefully:
78
+
79
+
80
+
72
81
The description of the inputs is as follows:
73
82
74
83
***Staging Location**: The temporary storage location to which the initial backup copy is written. Staging location might be on a network share or a local computer. If the copy computer and source computer are different, we recommended that you specify the full network path of the staging location.
@@ -79,15 +88,15 @@ This section describes the offline-backup workflow so that your data can be deli
79
88
80
89
Provide the inputs on the screen and click **Next**. Save the provided *Staging location* and the *Azure Import Job Name*, as this information is required to prepare the disks.
81
90
82
-
2. When prompted, sign into your Azure subscription. You must sign in so that Azure Backup can create the Azure Active Directory application, and provide the required permissions to access the Azure Import Service.
91
+
4. When prompted, sign into your Azure subscription. You must sign in so that Azure Backup can create the Azure Active Directory application, and provide the required permissions to access the Azure Import Service.
4. In the Confirmation page of the wizard, click **Back Up**. The initial backup is written to the staging area as part of the setup.
99
+
6. In the Confirmation page of the wizard, click **Back Up**. The initial backup is written to the staging area as part of the setup.
91
100
92
101
93
102
@@ -200,4 +209,3 @@ Once the initial backup is complete, you can safely delete the data imported to
200
209
## Next steps
201
210
202
211
* For any questions on the Azure Import/Export workflow, refer to [Use the Microsoft Azure Import/Export service to transfer data to Blob storage](../storage/common/storage-import-export-service.md).
Copy file name to clipboardExpand all lines: articles/backup/backup-azure-backup-server-import-export-.md
+38-5Lines changed: 38 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -71,20 +71,53 @@ Ensure that the following prerequisites are met before initiating the Offline Ba
71
71
72
72
The tool will create an Azure Offline Backup AD Application if one does not exist.
73
73
74
-
If an Application already exists, this executable will ask you to manually upload the certificate to the application in the tenant. Follow the steps below in this section to upload the certificate manually to the app.
74
+
If an Application already exists, this executable will ask you to manually upload the certificate to the application in the tenant. Follow the steps below in [this section](#manually-upload-offline-backup-certificate) to upload the certificate manually to the application.
75
75
76
76
* The AzureOfflineBackup.exe tool will generate an OfflineApplicationParams.xml file. Copy this file to the server with MABS or DPM.
77
-
* Install the [latest MARS agent](https://aka.ms/azurebackup_agent) on the DPM/Venus server.
77
+
* Install the [latest MARS agent](https://aka.ms/azurebackup_agent) on the DPM/Azure Backup (MABS) server.
78
78
* Register the server to Azure.
79
79
* Run the following command:
80
80
81
81
```cmd
82
82
AzureOfflineBackupCertGen.exe AddRegistryEntries SubscriptionId:<subscriptionid> xmlfilepath:<path of the OfflineApplicationParams.xml file> storageaccountname:<storageaccountname configured with Azure Data Box>
83
83
```
84
84
85
-
For more information on the supported options for the AzureOfflineBackupCertGen.exe, see *ReadMeAzureCertGen.txt* and *addRegistry.PNG*
85
+
* The command above will create the file `C:\Program Files\Microsoft Azure Recovery Services Agent\Scratch\MicrosoftBackupProvider\OfflineApplicationParams_<Storageaccountname>.xml`
86
86
87
-
* The command above will create the file `C:\Program Files\Microsoft Azure Recovery Services Agent\Scratch\MicrosoftBackupProvider\OfflineApplicationParams_Storageaccountname.xml`
87
+
## Manually upload Offline Backup Certificate
88
+
89
+
Follow the steps below to manually upload the Offline Backup certificate to a previously created Azure Active Directory application meant for Offline Backup.
90
+
91
+
1. Sign in to the Azure portal.
92
+
2. Go to **Azure Active Directory** > **App registrations**
93
+
3. Navigate to the **Owned Applications** tab and locate an application with the display name format `AzureOfflineBackup _<Azure User Id` as shown below:
94
+
95
+
96
+
97
+
4. Click on the application. Under the **Manage** tab on the left pane, go to **Certificates & secrets**.
98
+
5. Check for pre-existing certificates or public keys. If there are none, you can safely delete the application by clicking on the **Delete** button on the application's **Overview** page. Following this, you can retry the steps to [Prepare the Server for the Offline Backup](#prepare-the-server-for-the-offline-backup-process) process and skip the steps below. Otherwise, execute the following steps from the DPM / Azure Backup Server (MABS) server where you wish to configure Offline Backup.
99
+
6. Open the **Manage computer certificate application** > **Personal** tab and look for the certificate with the name `CB_AzureADCertforOfflineSeeding_<ResourceId>`
100
+
7. Select the certificate above, right-click on **All Tasks** and then **Export**, without private key, in the .cer format.
101
+
8. Go to the Azure Offline Backup application in the Azure portal.
102
+
9. Click on **Manage** > **Certificates & secrets** > **Upload certificate**, and upload the certificate exported in the previous step.
103
+
104
+
105
+
10. On the server, open the registry by typing **regedit** in the run window.
106
+
11. Go to the registry entry *Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Azure Backup\Config\CloudBackupProvider*.
107
+
12. Right-click on **CloudBackupProvider** and add a new string value with the name `AzureADAppCertThumbprint_<Azure User Id>`
108
+
109
+
>[!NOTE]
110
+
> Note: To find the Azure User Id, perform one of the following steps:
111
+
>
112
+
>1. From the Azure connected PowerShell run the `Get-AzureRmADUser -UserPrincipalName “Account Holder’s email as appears in the portal”` command.
113
+
>2. Navigate to the registry path: `Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Azure Backup\DbgSettings\OnlineBackup; Name: CurrentUserId;`
114
+
115
+
13. Right-click on the string added in the previous step and select **Modify**. In the value, provide the thumbprint of the certificate you exported in step 7 and click **OK**.
116
+
14. To get the value of the thumbprint, double-click on the certificate, then select the **Details** tab and scroll down until you see the thumbprint field. Click on **Thumbprint** and copy the value.
117
+
118
+
119
+
120
+
15. Continue to the [Workflow](#workflow) section to proceed with the Offline Backup process.
88
121
89
122
## Workflow
90
123
@@ -126,7 +159,7 @@ The information in this section helps you complete the offline-backup workflow s
126
159
127
160
The *AzureOfflineBackupDiskPrep* utility is used to prepare the SATA drives that are sent to the nearest Azure Datacenter. This utility is available in installation directory of the Recovery Services agent in the following path:
1. Go to the directory, and copy the **AzureOfflineBackupDiskPrep** directory to a copy computer on which the SATA drives to be prepared are connected. Ensure the following with regards to the copy computer:
0 commit comments