Skip to main content

Cyber Protect Features for agentless environments (vSphere)

Thread needs solution
Beginner
Posts: 1
Comments: 1

Hi, 

I hope someone from Acronis or a customer with real world experience can jump in and clarify this for me as I am not sure if I understood the various papers correctly.

Are there any Cyber Protect features working in an all agentless environment? Specifically "Scan Backups for malware", "Safe recovery of the Backups"? Or, is this only possible with OS agent based backup and restore?

If the OS agent is required for this to work, I assume VM image restore based "Save recovery of the Backups" would still not be possible, even if the OS agent was installed in the VMs, right? A restore would have to be done using OS agent or Acronis boot media?

Or, does Cyber Protect offer some kind of staging/mount server comparable to what VEEAM does with their mount server to scan agentless VM Image backups and restores?

Thanks a lot for any input on this

Best regards.

0 Users found this helpful
Forum Support specialist
Posts: 0
Comments: 1735

Hello Marco,

Welcome to Acronis forums!

The Antimalware scan of backups feature works for backups created in an agentless environment, however, it needs a designated machine with an Agent that performs scanning and has access to all backups that are scanned.

The same applies to the Safe recovery feature: it needs the Agent for Windows for performing scanning but the backup itself could be created agentlessly.

 

 

Beginner
Posts: 1
Comments: 1

Hi Maria

Thanks for your feedback. Some more questions arise out of this:

a) Antimalware scan of backups would be run as a simple "off-host" scheduled job (recurring, one, or manually triggered) but job based "off-host" on a dedicated machine/VM doing the scanning of the backup files)

b) Save recovery would work to restore an agentless VM backup as a VM? Not agent based restore of files inside the VM backup or bare metal recovery etc. -> Use a dedicated Windows based vSphere backup proxy to restore the VM with "inline antimalware proofing"

Thanks for clarifying this...

Forum Support specialist
Posts: 0
Comments: 1735

Hello Marco.

a) The "off-host" means that this scanning job is performed on a designated machine for security and performance reasons but not on the Management Server. This machine will have access to all backups that are scanned. However, the Scan service should be installed on the Cyber Protect Management Server. The resulted backup scanning plan could be launched by schedule or manually. Please read this chapter for more details: https://www.acronis.com/en-us/support/documentation/AcronisCyberProtect_15/index.html#antimalware-scan-of-backups.html

b) Sorry for misleading you at this point: the "safe recovery" does not work for agentless backups, only for backups made with the Agent inside the guest OS of a VM. In this case you can still restore it as a virtual