K10 can usually invoke protection operations such as snapshots within a cluster without requiring additional credentials. While this might be sufficient if you are running in some of (but not all) the major public clouds and if you are limiting actions to a single cluster, it is not sufficient for essential operations such as performing real backups, enabling cross-cluster and cross-cloud application migration, and enabling DR of the K10 system itself.
To enable these actions that span the lifetime of any one cluster, K10
needs to be configured with access to external object storage. This
is accomplished via the creation of
Profile creation can be accessed from the
Settings icon in the
top-right corner of the dashboard or via the CRD-based Profiles
Export profiles are used to both create backups from snapshots and
move applications and their data across clusters and potentially
across different clouds. To create an Export profile, click
Create Profile on the profiles page and select
As mentioned above, exporting data requires an object storage location. You are therefore required to pick an object storage provider, a region for the bucket if being used in a public cloud, and the bucket name. If a bucket with the given name does not exist, it will be created.
If you are using an S3-compatible object storage system that is not hosted by one of the supported cloud providers, you will need to also specify an S3 endpoint URL and optionally disable SSL verification. Disabling SSL verification is only recommended for test setups.
When certain cloud providers (e.g., AWS) are selected, provider-specific options (e.g., IAM Roles) will appear for configuration if needed.
When you hit
Validate and Save, the config profile will be created
and you will see a profile similar to the following:
Export Settings for Migration¶
If the export profile will be used for cross-cluster migration, it will be used to store application restore point metadata and, when moving across infrastructure providers, bulk data too.
When the source and destination clusters are in different regions of a public cloud provider that supports cross-region snapshot copies (e.g., AWS), it is essential that the object storage bucket region selected in the profile is the same region as where the destination cluster is located, as K10 uses that, if needed, to determine the region where the artifacts (e.g., snapshot copies) should be copied to.
When creating an export profile for Azure cross-region migration, make sure that the Azure storage account provided in the export profile supports page blobs and belongs to the same region as the target cluster.
Import profiles are not needed for restoring from backups that use export profiles. They are only supported for importing applications into a cluster that is different than where the application was captured from. The protecting applications section has more details.
Import profiles are used for importing applications into a cluster that is different than where the application was captured.
To import application restore points that have been exported for migration from another cluster, an import profile needs to be created on the destination cluster. This is almost identical to the creation of an export profile where you to specify an object storage provider configuration and credentials that will allow read access to the bucket.