4.7.1. Procedure – Creating a backup policy using Rsync over SSH

The Rsync over SSH backup method connects the target server with SSH and executes the rsync UNIX command to copy the data to the remote server. PSM authenticates itself with a public key — password-based authentication is not supported.

Warning

The backup server must run rsync version 3.0 or newer.

Steps: 

  1. Navigate to Policies > Backup & Archive/Cleanup and click in the Backup policies section to create a new backup policy.

  2. Enter a name for the backup policy (for example config-backup).

  3. Enter the time when the backup process should start into the Start time field in HH:MM format (for example 23:00).

  4. Enter the IP address or the hostname of the remote server into the Target server field (for example backup.example.com).

    Use an IPv4 address.

  5. Select Rsync over SSH from the Target settings radio buttons.

    Figure 4.20. Policies > Backup & Archive/Cleanup > Backup policies — Configuring backups using rsync

    Policies > Backup & Archive/Cleanup > Backup policies — Configuring backups using rsync
  6. Enter the username used to logon to the remote server into the Username field.

  7. Click in the Authentication key field. A popup window is displayed.

  8. Generate a new keypair by clicking Generate or upload or paste an existing one. This key will be used to authenticate PSM on the remote server. The public key of this keypair must be imported to the remote server.

  9. Click in the Server host key field. A popup window is displayed.

  10. Click Query to download the host key of the server, or upload or paste the host key manually. PSM will compare the host key shown by the server to this key, and connect only if the two keys are identical.

    Figure 4.21. Policies > Backup & Archive/Cleanup > Backup policies — Configuring SSH keys

    Policies > Backup & Archive/Cleanup > Backup policies — Configuring SSH keys
  11. Enter the port number of the SSH server running on the remote machine into the Port field.

  12. Enter the path to the backup directory on the target server into the Path field (for example /backups).

    PSM saves all data into this directory, automatically creating the subdirectories. Backups of audit-trails are stored in the data, configuration backups in the config subdirectory.

  13. To receive e-mail notification of the backup, select the Send notification on errors only or the Send notification on all events option. Notifications are sent to the administrator e-mail address set on the Management tab.

    To include the list of files in the e-mail, select Send notification on all events and enable the Include file list option. However, note that if list is very long (for example, PSM stores over 20000 audit trails), the PSM web interface might become unaccessible. In this case, set the Maximum number of files in notification lower. After this number has been reached, file names will be omitted from the notification.

    Note

    This e-mail notification is different from the one set on the Alerting & Monitoring tab. This notification is sent to the administrator's e-mail address, while the alerts are sent to the alert e-mail address (see Section 4.6, Configuring system monitoring on PSM).

  14. Click .

  15. To assign the backup policy to a connection, see Procedure 4.7.5, Creating data backups.