Policies

CloudCasa policies allow you to define schedules and retention periods for your Kubernetes backup jobs, database backup jobs, and security scan jobs. Along with backup retention periods, you can also specify whether or not SafeLock protection should be enabled. This prevents recovery points from being deleted before their retention periods expire.

Note

Policies do not apply to CloudCasa for Velero backups. Velero backup definitions each contain their own schedule and retention information.

Restriction: The Free Service Plan limits retention periods to a maximum of 30 days and does not allow SafeLock to be used. Premium Service Plans have no limit on retention periods.

From the menu bar, click Configuration > Policies.

See also

You can use policies in the following tasks:

• Cluster Backups

• Database Backups

• Security: Scan Jobs

For information about SafeLock protection, see SafeLock.

Adding a policy

Take the following steps to create a new policy:

1. In the policies page, click Add policy+.

2. In the schedule section, choose one of the following schedule types: Hourly, Daily, Weekly, Monthly, or Custom. You can add multiple schedules from different schedule patterns. For each schedule, you can enable or disable the SafeLock protection option.

   Hourly

   Specify how often and when you want to run the scheduled backup or snapshot jobs that are associated with this policy. For example, to schedule the backup or snapshot jobs for every 1 hour at 30 minutes, the job runs every day at 12:30 AM, 1:30 AM, and so on, until 11:30 PM.

   

   Daily

   Specify how often and what time of the day you want to run the scheduled backup or snapshot jobs. In this step, you must specify the time zone. For example, you can schedule the backup or snapshot jobs for every other day at 5:30 PM in the America/New_York time zone, that is, US Eastern Time.

   

   Weekly

   Specify what days and what time you want to run on. For example, you can schedule the backup or snapshot jobs for Monday through Friday at 8:00 AM US Eastern Time.

   

   Monthly

   Schedule backup or snapshot jobs for every month or every few months, on a specific day. For example, you can schedule your backup or snapshot jobs for every month, on the fifth day, that is, January 5, February 5, March 5, and so on; and these jobs start at 12:30 AM US Eastern Time on these days.

   

   Custom

   Schedule backup or snapshot jobs with more complex patterns by using a cron expression. For example, assume that you want to run backup or restore jobs 15 minutes after every hour between 8 AM and 6PM US Eastern Time; that is, run the backup or restore jobs at 8:15 AM, 9:15 AM, and so on, until 5:15 PM. In this case, you can express this schedule pattern in cron expression: 15 8-17 * * 1-5.

   

   In addition, you can specify the retention period for each schedule. For example, if you specify 30 days, your backups or snapshots will be reserved for up to 30 days. Any backups or snapshots that are older than the retention period will be purged automatically.

   Click Create policy.

Ensure that you can see the new policy in the list.

SafeLock

You can enable SafeLock for each security policy schedule or recovery point. Any backup that was created by a policy with SafeLock enabled cannot be deleted until the retention period expires. Retention times for recover points that have SafeLock enabled can be increased, but not decreased.

SafeLock prevents attackers, malware, rogue software, or rogue users from deleting critical backups. This can be useful for legal holds or mitigating damages by ransomware.

Restrictions:

• SafeLock is only available for backups targeted at CloudCasa Managed Storage.

• SafeLock is not available in the Free Service Plan.