Adding Backup Sources (Azure)

Adding Backup Sources (Azure)

Prerequisites to add Azure Account

Step 1 : Generate Application ID

Sign in to your Azure Account through the Azure Portal
Notes
Note: Make sure the user account you use has sufficient permission to register an application and assign a role to it.
Search and locate the Microsoft Entra ID (formerly Azure Active Directory). On the Microsoft Entra ID page, select App registrations under Manage on the left pane and click on New registration. Then ‘Register an application’ page will appear and enter the following details to register your application.
Name 
Enter a display name for the application.
Supported account types 
Choose the option “Accounts in this organizational directory only”
Finally, click on the Register button. The Microsoft Entra ID (formerly Azure Active Directory) assigns a unique Application (client) ID, which appears on the page to which you are redirected.

Step 2: Generate Application Password

Select Certificates & secrets under Manage on the left pane.
Click on New client secret which opens a separate section: Add a client secret. On this page, choose 24 months from the Expires option and click Add. This will generate and display the application password (under the ‘Value’ column).
Notes
Note: Make sure you copy the application password (Value) as the portal will display it only once. (You can use the copy to clipboard icon to copy the password). Once the generated application password has expired, create a new client secret and update it on the BDRSuite. If the expired password is not updated, backups will fail.

Step 3: Create Role

  1. On the Home page, under the Azure Services section, select ‘Subscriptions’ (or) search for and select ‘Subscriptions’ from the Search box at the top.
  2. From the list of Subscriptions, click on the subscription that you plan to use in BDRSuite to configure backup from.
  3. On the left pane of the selected Subscription page, click Access control (IAM) and then click Add -> Add custom role.
  4. On the Basics Tab, Enter a Custom Role name ( bdrsuite-azure-backup-restore-role) and for Baseline Permissions, select the option: start from scratch.
    1. ‘Permissons’ Tab – Click next and move to Assignable Scopes tab.
    2. On the Assignable Scopes Tab: Click on “+Add Assignable Scopes” option to add any other subscriptions you have access to. On the Add assignable scopes dialog, select a subscription to add as an assignable scope.
    3. On the JSON Tab, click “Edit”, Under “permissions”, copy and paste the entire content from the following JSON policy document and finally “Save” it.
    4. On the Review + Create tab, review the role assignment settings and click the Review + Create button.
    5. On the Add custom role page add the roles.
Notes
Note: Please make sure to select any other subscriptions associated with this account if you intend to use them for backup and recovery. Otherwise, you will need to perform the steps separately for each subscription later.

Step 4: Add Role Assignment

  1. On the Home page, under the Azure Services section, select ‘Subscriptions’ (or) search for and select ‘Subscriptions’ from the Search box at the top.
  2. From the list of subscriptions, click on the subscription that you plan to use in BDRSuite.
  3. On the left pane of the selected subscription page, click Access control (IAM) and then click Add -> Add role assignment
  4. On the Add the role assignment page add the following roles:
    1. Under Role tab, select the role created above (bdrsuite-azure-backup-restore-role) and click next
    2. On the Members Tab:
      1. For the field: ‘Assign access to’, select the option: User, group, or service principal.
      2. For the field: Members, click ‘Select Members’ which opens a dialog box. Search and select the application that you have created (in step 1) and click the ‘Select’ button. Then, click the Next button.
      3. On the Review + assign tab, review the role assignment settings and click the Review + assign button.

Step 5: Add Azure Account on the BDRSuite

  1. On the BDRSuite, navigate to the Cloud Workloads ->Data Source-> Azure Backup -> Azure Accounts page.
  2. Click on the ‘Add Azure Account’ button which opens a dialog box. Then, enter the following details and click ‘Save’.
    1. Tenant ID – On the Azure Portal, navigate to the Microsoft Entra ID (formerly Azure Active Directory) page where you can find the ‘Tenant ID’ under the Basic information section.
    2. Application ID – On the Azure Portal, navigate to the Microsoft Entra ID (formerly Azure Active Directory) and select ‘App registrations’ from the left pane. Click on the application that you have created (in step 1) and you can find the ‘Application (client) ID’ under Essentials section.
    3. Application Password – Provide the Application Password (Value) that you copied after creating the client secret.

Adding Azure

To add Azure Accounts for Azure VM Backup and Recovery on the BDRSuite – Tenant ID, Application ID & Application Password details are required. Click here to learn about prerequisites to add Azure.

Account Name

Enter a name to identify the Azure account you are adding to the BDRSuite Backup Server.

Tenant ID

On the Azure Portal, navigate to the Entra ID (Formerly known as Azure Active Directory) page where you can find the Tenant ID under the basic information section. Copy the ID and paste it here.

Application ID

On the Azure Portal, navigate to the Entra ID (Formerly known as Azure Active Directory) page and select ‘App Registration’ from the left pane. Click on the application created for the BDRSuite from the list and you can find the Application(Client) ID under the Essentials Section. You can copy the ID and paste it here.

Application Password

Enter the Application Password that you copied after creating client secret ID.
Click Save after entering all the details and you will have your Azure Account added to the BDRSuite Backup Server.
    • Related Articles

    • Microsoft 365 - Adding Data Sources

      In order to set up the Data Sources environment, you need to add your Microsoft 365 Organization, which can be done by navigating to the Data Sources -> Add Microsoft 365 Organization. Add Microsoft 365 Organization To add the Microsoft 365 domain, ...
    • Google Workspace - Adding Data Sources

      In order to set up the Data Sources environment, you need to add your Google Workspace, which can be done by navigating to the Data Sources tab and choosing Add Google Workspace Organization. Add Google Workspace Organization To add the Google ...
    • Azure VM Backup and Recovery

      Overview BDRSuite's Azure Backup solution provides comprehensive protection for your Azure Virtual Machines and other critical workloads, ensuring secure backups and seamless recovery in case of accidental deletion, data corruption, or system ...
    • Adding Mac for Backup

      Prerequisites to add Mac Before you add a Mac Endpoint to the BDRSuite Server/Client, check the following prerequisites. 1.User Account with Root Privileges: Make sure the user account you specify to add the Mac has root privileges. If you add a ...
    • How to backup Azure virtual machines?

      Azure VM Backup solutions like BDRSuite offers comprehensive backup features such as agentless backup, application aware processing, data retention policies, flexible recovery & more to ensure complete data protection for Azure virtual machines. ...