Backup OpenShift® Container Platform applications to an IBM Storage Protect server and optionally make a copy of the data
on tape.
Before you begin
Ensure that you have IBM Storage Protect 8.1.18
server or higher. Before you implement this solution, see IBM Storage Protect documentation to understand expected
recovery time of data from tape based on the total amount of managed data on the tape.
About this task
If the IBM Storage Protect server already has an object
agent defined, you must recreate the object agent to ensure that the public certificate is generated
correctly. To recreate the object agent, you must do the following steps to remove the current
object agent:
- From the IBM Storage Protect server, issue the command
delete server <object_agent_name>
.
- Uninstall the IBM Storage Protect object agent on the
system by using the ibmspecified command from the
delete server
output.
- Delete the object agent directory under the server instance directory on the machine that hosts
the IBM Storage Protect installation.
- Proceed with the steps in the procedure to define the IBM Storage Protect object agent.
Procedure
-
Configure the object agent service on the IBM Storage Protect server.
- Run the following command on IBM Storage Protect server:
setopt objectagentsancertificate yes
Note:
- If you are using a self-signed certificate, then you need this step to allow the object agent to
create a self-signed certificate with the Subject Alternate Name (SAN).
- If you are using a CA-signed certificate, then this step is not required.
- Create the object agent service by using the
DEFINE SERVER
command.
- Configure an object client as documented in IBM Storage Protect documentation.
- Create an object storage bucket. You can create a bucket either by using the S3 API or
by using the following MinIO client command:
mc mb
- Configure a backup location from the IBM Storage Fusion interface.
- Location name is any name of your choice.
- Location type is S3 Compliant.
- Endpoint is the URL using the dotted IP address of the object agent
client, which was configured on the IBM Storage Protect
server.
- Bucket is the bucket that was configured on the IBM Storage Protect server.
- Access key and Secret key are the keys that were
generated when the object client was created on the IBM Storage Protect server.
- Secret name for certificate to create a secret to store the IBM Storage Protect public certificate as documented in the Adding a location or Adding a backup storage location.
After the backup location is created, create a backup policy using the new backup location and
assign one or more applications to the backup policy.
- Copy data to and from tape:
- Optionally, copy IBM ibmspectrum Protect data to
tape:
PROTECT STGPOOL
Type=Local
You can schedule this command to run periodically.
- To recover data that is no longer available in the primary storage pool, use the
REPAIR STGPOOL
command to recover the data from tape to the primary storage pool.
For more information about the command, see IBM Storage Protect
documentation.
- Initiate the restore request from IBM Storage Fusion.