Protection Policy Center

更新时间:
复制 MD 格式

The Protection Policy Center in Backup and Disaster Recovery Center (BDRC) provides a unified interface to configure and monitor data protection solutions for ECS, OSS, and NAS resources in your account.

Features

  • Manage and configure protection policies for ECS, OSS, and NAS resources from a single console.

  • Receive alert notifications when a protection policy fails or other exceptions occur. For more information, see Message Center.

  • Select and configure sub-protection policies such as automatic disk snapshots, Cloud Backup policies, NAS recycle bin, and OSS versioning.

  • Associate protection policies with specific resource categories to ensure that critical resources are effectively protected.

Supported scope and limitations

  • Protection policies can only apply sub-protection policies to resources, such as automatic disk snapshots, Cloud Backup policies, NAS recycle bin, or OSS versioning.

  • When you create or edit a protection policy, the automatic snapshot and Cloud Backup policies selected as sub-protection policies must be in the same region. You cannot create, modify, or delete automatic snapshot policies or Cloud Backup policies in the BDRC console. To perform these operations, go to the console of the corresponding service.

  • Protection policies are region-specific and can only be applied to resources in the same region within the associated resource category. Make sure that your protection policy is created in the correct region and associated with the correct resource category.

  • If you do not configure a sub-protection policy or you delete a protection policy, BDRC does not automatically disassociate sub-protection policies already applied to resources. For example, BDRC does not disassociate applied automatic snapshot policies, disable the NAS recycle bin, suspend OSS versioning, or disassociate Cloud Backup policies. To disassociate an applied sub-protection policy, go to the console of the corresponding service.

  • An ECS disk can be associated with only one automatic snapshot policy. If an ECS disk is already associated with another automatic snapshot policy, BDRC does not apply the sub-protection policy to the disk. Automatic snapshot policies cannot be applied to cross-account resources and can be applied only to resources in the current account. For multi-account management, use ECS instance backup. To prevent snapshot execution conflicts, do not use both the Cloud Backup service for ECS instances and the disk snapshot service for the same disk.

  • If a NAS file system already has the recycle bin enabled with a retention period different from that in the sub-protection policy, BDRC does not apply the sub-protection policy to the file system.

  • Cloud Backup allows a resource to be associated with multiple backup policies. Applying a sub-protection policy to a resource that already has backup policies may result in the resource being associated with multiple backup policies.

  • You cannot create sub-protection policies for ECS files, self-managed databases that are deployed on ECS instances, and Tablestore. To create these policies, go to the Cloud Backup console.

  • You can create a maximum of 10 protection policies.

  • For more information about the supported regions, see Region-specific features.

Procedure

  1. Log on to the BDRC console.

  2. In the left-side navigation pane, choose Protection Policy Center. Switch to the region where your resources are located and click Create Protection Policy.

  3. In the Create Protection Policy panel, specify a unique Protection Policy Name up to 128 characters in length, configure sub-protection policies, and then click OK.

    Resource type

    Protection scheme

    Sub-protection policy

    ECS

    ECS instance backup

    Not configured by default.

    • From the drop-down list, select an existing instance backup policy that you created in the Cloud Backup console.

    • You can also click New to go to the Cloud Backup console and create a new backup policy. After the policy is created, click Refresh and then select the created policy.

    Note

    Within a single protection policy, you can select either ECS instance backup or disk snapshot, but not both. To prevent snapshot execution conflicts, do not use both the ECS instance backup service of Cloud Backup and the disk snapshot service for the same disk.

    disk snapshot

    Not configured by default.

    • From the drop-down list, select an existing automatic disk snapshot policy that you created in the ECS console.

    • You can also click New to go to the ECS console and create a new automatic snapshot policy. After the policy is created, click Refresh and then select the created policy.

    Note

    If the disk is already associated with an automatic snapshot policy, this automatic snapshot policy is not applied.

    Important

    An automatic snapshot policy cannot be applied to cross-account resources and can be applied only to resources in the current account. For multi-account management, use ECS instance backup.

    OSS

    OSS versioning

    Not configured by default. From the drop-down list, select Enable.

    OSS backup

    Not configured by default.

    • From the drop-down list, select an existing backup policy that you created in the Cloud Backup console.

    • You can also click New to go to the Cloud Backup console and create a new backup policy. After the policy is created, click Refresh and then select the created policy.

    NAS

    NAS recycle bin

    Not configured by default. From the drop-down list, select Enable. The default retention period is 3 days. You can also specify a retention period of 1 to 180 days.

    Note

    If the NAS file system already has the recycle bin enabled, this recycle bin configuration is not applied.

    NAS backup

    Not configured by default.

    • From the drop-down list, select an existing backup policy that you created in the Cloud Backup console.

    • You can also click New to go to the Cloud Backup console and create a new backup policy. After the policy is created, click Refresh and then select the created policy.

  4. After creating the protection policy, find the policy, click Associate in the Associate Resource Category column, select a resource category, and then click OK. For more information about how to create a resource category, see Resource Category Management.

    Important

    A protection policy can be applied only to resources within a resource category that are in the same region. Make sure that your protection policy is created in the correct region and associated with the correct resource category.

    Note

    After you create a protection policy, BDRC monitors the associated automatic snapshot policies and Cloud Backup policies. If a configuration changes, BDRC sends a related event to Message Center.

  5. After the association is complete, BDRC applies the protection policy to the relevant resources in the region within 4 hours. In the policy list, you can view the Resource Count and Application Result in the Latest Application column. Click View All to check the application results for specific resources. You can also go to the console of the corresponding service to check the data protection status of your resources.

Modifying a protection policy

After creating a protection policy, click Edit in the Actions column to modify the policy. BDRC applies the updates to the relevant resources in the region within 4 hours.

Deleting a protection policy

To delete a protection policy, click Delete in the Actions column.

Important

Deleting a protection policy prevents it from being applied to resources, but does not disassociate already-applied sub-protection policies.