- Overview
- Getting Started
- Configuring RBAC
- Configuring Primary Authentication
- Configuring Trusted Points
- Configuring VM Managers
- Configuring System Profiles
- Configuring Tenants
- Configuring Service Policies and Profiles
- Configuring Device Policies and Profiles
- Configuring Managed Resources
- Integrating with DCNM
- Configuring Administrative Operations
Configuring Administrative Operations
This section includes the following topics:
- Administrative Operation Conventions
- Managing Backup Operations
- Restoring a Backup Configuration
- Managing Export Operations
- Configuring Import Operations
Administrative Operation Conventions
The following conventions apply when performing the administrative operations described in this section:
The remote file location you specify must start with a slash (/) and include the full path and file name. Do not use relative paths.
The user name and password on the remote system must be correct, and the user specified must have read and write permissions on the remote system.
The file on the remote system must be a valid file, and the size cannot be zero.
For backup and export operations, if the Task tab contains a Remote Err Description of No such file, reboot the VM via vCenter.
Managing Backup Operations
We recommend that you use backup and restore operation as a disaster recovery mechanism. To migrate configuration data from one server to another, use export and import operations.
- Creating a Backup Operation
- Running a Backup Operation
- Editing a Backup Operation
- Deleting a Backup Operation
Creating a Backup Operation
Obtain the backup server IP address or hostname and authentication credentials.
1. Choose .
2. Click Create Backup Operation.
3. In the Create Backup Operation dialog box, complete the following fields, then click OK:
DETAILED STEPS
Running a Backup Operation
1. Choose Administration > Operations > Backup-server where backup-server is the server on which the backup file is stored.
2. In the General tab, enter the following information:
3. Click Save.
4. (Optional) To view the progress of the backup operation, click the Task tab. The Task tab provides the information described in the following table. The operation continues to run until it is completed.
DETAILED STEPS
Step 1 | Choose Administration > Operations > Backup-server where backup-server is the server on which the backup file is stored. | ||||||||||||||||||||||
Step 2 | In the General tab, enter the following information: | ||||||||||||||||||||||
Step 3 | Click
Save.
takes a snapshot of the configuration type that you selected and uploads the file to the network location. | ||||||||||||||||||||||
Step 4 | (Optional) To view the progress of the backup operation, click the Task tab. The Task tab provides the information described in the following table. The operation continues to run until it is completed.
|
Editing a Backup Operation
Obtain the backup server IP address or hostname and authentication credentials.
1. Choose .
2. Select the backup operation you want to edit, then click Edit.
3. In the Edit Backup dialog box, modify the information as required, then click OK.
DETAILED STEPS
Step 1 | Choose . | ||||||||||||||||
Step 2 | Select the backup operation you want to edit, then click Edit. | ||||||||||||||||
Step 3 | In the
Edit Backup dialog box, modify the information as required, then click OK.
|
Deleting a Backup Operation
1. Choose Administration > Operations.
2. Select the backup operation you want to delete, then click Delete.
3. When prompted, confirm the deletion.
DETAILED STEPS
Restoring a Backup Configuration
1. Install the virtual machine.
2. Uninstall the VSG policy agents. Connect the Secure Shell to the VSG console for this task. This step does not disrupt traffic.
3. Disable the ASA 1000V policy agent.
4. Uninstall the VSM policy agents. Connect the Secure Shell to the VSM console for this task. This step does not disrupt traffic.
5. Restore the database. Connect the Secure Shell to the CLI for this task. Depending upon your backup location, restore using FTP, SCP, or SFTP.
6. In the GUI, choose Resource Management > Resources > VSMs, and do the following:
7. In the GUI, choose Resource Management > Resources > VSMs, and verify that the deleted VSMs are not displayed.
8. Reregister the VSMs associated with by entering the following commands for each VSM:
9. Reinstall the VSM policy agents.
10. Wait until all the VSMs have registered with and are displayed under Resource Management > Resources > VSMs.
11. Reregister the VSGs associated with by entering the following commands for each VSG:
12. Reinstall the VSG policy agents.
13. Re-enable the ASA 1000V policy agent.
14. Verify the following states after the restore process is complete:
DETAILED STEPS
Step 1 | Install the virtual machine. | ||||||||
Step 2 | Uninstall the
VSG policy agents. Connect the Secure
Shell to the
VSG console for this task. This step
does not disrupt traffic.
Example:
| ||||||||
Step 3 | Disable the
ASA 1000V policy agent.
Example:
| ||||||||
Step 4 | Uninstall the
VSM policy agents. Connect the Secure
Shell to the
VSM console for this task. This step
does not disrupt traffic.
Example:
| ||||||||
Step 5 | Restore the
database. Connect the Secure Shell
to the
CLI for this task. Depending upon
your
backup location, restore using FTP,
SCP, or SFTP.
Example: nsc# connect local-mgmt nsc(local-mgmt)# restore scp://username@server/path | ||||||||
Step 6 | In the GUI, choose Resource Management > Resources > VSMs, and do the following: | ||||||||
Step 7 | In the GUI, choose Resource Management > Resources > VSMs, and verify that the deleted VSMs are not displayed. | ||||||||
Step 8 | Reregister the
VSMs associated with
by entering the following commands
for each
VSM:
Example:
| ||||||||
Step 9 | Reinstall the
VSM policy agents.
Example:
| ||||||||
Step 10 | Wait until all the VSMs have registered with and are displayed under Resource Management > Resources > VSMs. | ||||||||
Step 11 | Reregister the
VSGs associated with
by entering the following commands
for each
VSG:
Example:
| ||||||||
Step 12 | Reinstall the
VSG policy agents.
Example:
| ||||||||
Step 13 | Re-enable the
ASA 1000V policy agent.
Example:
| ||||||||
Step 14 | Verify the
following states after the restore process is complete:
|
Managing Export Operations
Use export and import operations to migrate data from one server to another. To back up and restore data (for example, as a disaster recovery mechanism), use backup and restore operations.
Creating an Export Operation
The associations of compute and edge firewalls with VSGs and ASA 1000Vs, respectively, are not included in export or import data. Only firewall definitions are included, such as device profiles and policies. If an imported firewall did not exist in the system, it will not be associated to a VSG or ASA 1000V after the import operation. If an imported firewall already existed in the system, the association state remains the same.
Obtain the remote file server IP address or hostname and authentication credentials before performing an export.
1. Choose Administration > Operations.
2. Click Create Export Operation.
3. In the Create Export Operation dialog box, provide the required information as described in the following table, then click OK:
DETAILED STEPS
Step 1 | Choose Administration > Operations. | ||||||||||||||||
Step 2 | Click Create Export Operation. | ||||||||||||||||
Step 3 | In the
Create Export Operation dialog box, provide the required information as described in the following table, then click OK:
|
Editing an Export Operation
Note | The associations of compute and edge firewalls with VSGs and ASA 1000Vs, respectively, are not included in export or import data. Only firewall definitions are included, such as device profiles and policies. If an imported firewall did not exist in the system, it will not be associated to a VSG or ASA 1000V after the import operation. If an imported firewall already existed in the system, the association state remains the same. |
Obtain the remote file server IP address or hostname and authentication credentials before performing an export.
1. Choose Administration > Operations.
2. In the Operations table, select the export operation you want to edit, then click Edit.
3. In the Edit Export dialog box, modify the fields as appropriate, then click OK.
DETAILED STEPS
Step 1 | Choose Administration > Operations. | ||||||||||||||||
Step 2 | In the Operations table, select the export operation you want to edit, then click Edit. | ||||||||||||||||
Step 3 | In the
Edit Export dialog box, modify the fields as appropriate, then click OK.
|
Deleting an Export Operation
1. In the Navigation pane, choose Administration > Operations.
2. In the Operations table, select the export operation you want to delete.
3. When prompted, confirm the deletion.
DETAILED STEPS
Configuring Import Operations
Creating an Import Operation
Obtain the remote file server IP address or hostname and authentication credentials.
Note | The association of compute and edge firewalls with VSGs and ASA 1000Vs, respectively, are not included in the export or import data. Only the compute and edge firewall definitions are included, such as device profiles and policies. Therefore, if an imported firewall did not exist in the system, it will not be associated to a VSG or ASA 1000V after the import operation. If an imported firewall already existed in the system, the association state remains the same. |
Caution | When the configuration data is imported into the server, you might see an error message and get logged out, followed by the display of a new certificate. This error occurs because the hostname, domain name, or both have changed. The VM Manager Extension needs to be exported again and installed on vCenter. To continue with the import, accept the certificate and log into again. |
1. Choose Administration > Operations.
2. Click Create Import Operation.
3. In the Create Import Operation dialog box, provide the following information as required, then click OK:
DETAILED STEPS
Step 1 | Choose Administration > Operations. | ||||||||||||||||
Step 2 | Click Create Import Operation. | ||||||||||||||||
Step 3 | In the
Create Import Operation dialog box, provide the following information as required, then click OK:
|
Editing an Import Operation
Obtain the remote file server IP address or hostname and authentication credentials.
1. Choose Administration > Operations.
2. Select the import operation that you want to edit, then click Edit.
3. In the Edit dialog box, modify the fields as required, then click OK.
DETAILED STEPS
Step 1 | Choose Administration > Operations. | ||||||||||||||||
Step 2 | Select the import operation that you want to edit, then click Edit. | ||||||||||||||||
Step 3 | In the
Edit dialog box, modify the fields as required, then click OK.
|
Deleting an Import Operation
1. Choose Administration > Operations.
2. Select the import operation that you want to delete, then click Delete.
3. When prompted, confirm the deletion.
DETAILED STEPS