Configuring system backup
System backups store all the necessary data and configuration values to restore a Guardium Server. Configure and schedule regular system backups during the implementation stage.
About this task
A system backup is a full backup of the Guardium database and selected configuration files, such as groups, queries, reports, audit processes, alerts, and policies. In virtualized environments, you can create a backup by making an actual snapshot of the Guardium® system. Use the snapshot to restore a failed system. In this case, it is not necessary to keep more than three rolling copies. It is important to back up the aggregators. A weekly backup is recommended, especially for the central manager. However, some users might opt for a slightly longer cycle. Tip: In a managed environment with aggregation, you might choose not to back up managed collectors. Always back up stand-alone collectors.
- Keep a rolling three months full backup from each unit (minimum one month).
- Keep a rolling 2-weeks worth of daily archives from the managed collectors.
- Full or system backups
- Weekly or daily full backups of the central manager unit (assuming a stand-alone central manager).
- Monthly for aggregators and collectors during a quiet off-hour period.
Data and configuration values are stored in separate encrypted files and sent to the specified destination by using the transfer method that is configured for backups on the system. For more information about the encryption used for backup files, see the File backup cipher section of Cipher suites
- Before it starts, the backup process checks for room in /var. This process also warns the user if the space is insufficient for backup.
- The archive process checks the size of the static tables and verifies that /var has space to create the archive.
- An error is logged in the log file and GUI if the backup is over 50%. For
example:
ERROR: /var backup space is at 60% used. Insufficient disk space for backup.