4.8. Archiving and cleanup

Archiving transfers data from PSM to an external storage solution, cleanup removes (deletes) old files. Archived data can be accessed and searched, but cannot be restored (moved back) to the PSM appliance. Only those closed audit-trail files are archived where the retention time has already elapsed.

To configure archiving and cleanup, you first have to create an archive/cleanup policy. Archive/cleanup policies define the retention time, the address of the remote backup server, which protocol to use to access it, and other parameters. PSM can be configured to use the SMB/CIFS and NFS protocols to access the backup server:

Warning

If you modify the connection protocol of an existing policy (for example, from NFS to SMB/CIFS), the old archives will become inaccessible. To avoid this, create a new archive policy instead, using the new connection protocol, and configure it for all affected connections (<connection type> > Connections > >Archive/Cleanup policy). This way, both the old and the new archived trails will be accessible.

The different protocols assign different file ownerships to the files saved on the remote server. The owners of the archives created using the different protocols are the following:

  • SMB/CIFS: The user provided on the web interface.

  • NFS: root with no-root-squash, nobody otherwise.

Warning

PSM cannot modify the ownership of a file that already exists on the remote server.

Once you have configured an archive/cleanup policy, assign it to the connection you want to archive. For details, see Procedure 4.8.4, Archiving or cleaning up the collected data.

Data about archived connections can be automatically deleted from the connection database. For details, see Procedure 7.14, Configuring cleanup for the PSM connection database.