1) Does Azure File backup store data in Azure recovery vault
2) In Above microsoft link, it says Instant Restore is on the features. If i my data is infected by ransomware attack , how can i instantly restore data prior to attack. ?
3) What options do we have to secure azure file backup
@MSTechie-7364 Thank you for posting your questions on Microsoft Q&A platform!
In general you have questions on Recovery Services Vault (RSV), Ransomware and Azure File Share backup. Please see the response in line.
1) Does Azure File backup store data in Azure recovery vault
In-short the data is stored in the storage account not on RSV.
Please refer to this tech link - https://techcommunity.microsoft.com/t5/itops-talk-blog/how-to-backup-and-restore-azure-file-shares/ba-p/2117348 authored by Sonia Cuff on Azure file share backup architecture.
2) In Above Microsoft link, it says Instant Restore is on the features. If i my data is infected by ransomware attack , how can i instantly restore data prior to attack. ?
Azure Backup provides security to your backup environment, both when your data is in transit and at rest. The backup data is stored in Azure storage and the guest or attacker has no direct access to backup storage or its contents. Reference to the doc link - https://docs.microsoft.com/en-us/azure/security/fundamentals/backup-plan-to-protect-against-ransomware#azure-backup
3) What options do we have to secure azure file backup
Previous questions answers this question.
Hope this clarifies your questions!
If the response helped, do "Accept Answer" and up-vote it
1) So you are saying that Azure fileshare backup will inturn be stored inside the same azure storage account via the recovery vault ?
2) Lets assume that in case , the attacker somehow gets access inside and files get corrupted , then how can we perform instant restore of data before ransomware attack ?. Even if not instant restore , how do we understand which is correct snapshot data before ransomware attack.
3) What options do we have to secure azure file backup --> One option is to secure Recovery services vault . Any other options , or is that it
please help
1) So you are saying that Azure fileshare backup will inturn be stored inside the same azure storage account via the recovery vault ?
-YES!
2) Lets assume that in case , the attacker somehow gets access inside and files get corrupted , then how can we perform instant restore of data before ransomware attack ?. Even if not instant restore , how do we understand which is correct snapshot data before ransomware attack.
-Never came across such situation so its hard to comment on that.
3) What options do we have to secure azure file backup --> One option is to secure Recovery services vault . Any other options , or is that it
-We have security features in place that you can enable. For example: Soft delete, Multi-User-Authentication (MUA).
2) Lets assume that in case , the attacker somehow gets access inside and files get corrupted , then how can we perform instant restore of data before ransomware attack ?. Even if not instant restore , how do we understand which is correct snapshot data before ransomware attack.
-Never came across such situation so its hard to comment on that.
My experience : you should check the date when you've been attacked and select the restore point before that date. There is no information in the recovery vault so you need to perform the analysis on your own.
Also, to prevent such issue, please increase retention duration. SMBs detect corrupted files in 40 days on average and big account in 80 days on average according to last studies.
3) What options do we have to secure azure file backup --> One option is to secure Recovery services vault . Any other options , or is that it
-We have security features in place that you can enable. For example: Soft delete, Multi-User-Authentication (MUA).
MFA should always be set for backup admin (and any admin tbh). Softdelete is good and you can go further with the Lock for the vault.
10 people are following this question.
