Configuring OBS Buckets for Remote Log Backup
To enhance data disaster recovery management and improve audit data security and system scalability, CBH enables backup of configuration logs.
This topic walks you through how to set OBS buckets to remotely back up logs.
Constraints
- After remote backup is enabled, the system backs up the system data of the previous day at 00:00 every day by default.
- Logs are automatically backed up on a daily basis and uploaded to the corresponding folder in the OBS bucket.
- Logs of the same day cannot be backed up repeatedly in the same server path.
- System configuration and session playback logs can be remotely backed up to OBS buckets.
Prerequisites
- You have the management permissions for the System module.
- You have created an OBS bucket, and the network between the OBS bucket and the CBH system is normal.
Procedure
- Log in to the CBH system.
- Choose System > Data Maintain > Log Backup.
- In the Remote Backup To OBS area, click Edit. In the displayed dialog box, set bucket parameters.
Figure 1 Remote Backup To OBS
Table 1 Parameters for remote backup to OBS Parameter
Description
Status
Whether to back up logs to an OBS bucket (default:
).
: Backing up logs to OBS buckets is enabled. The system automatically starts backup at 00:00 every day.
: Backing up logs to OBS buckets is disabled.
Access Key ID
Specifies the access key ID, which is used to verify the identity of the request sender for accessing the OBS bucket.
An access key ID is a unique identifier associated with a secret access key and is used together with the secret access key to sign requests cryptographically.
Obtain Access Keys.
Secret Access Key
Specifies the secret access key used together with the access key ID.
A secret access key works as a cryptographic signature to identify the sender of a request and prevent the request from being tampered with.
EndPoint
Region where the bucket is located.
View bucket information to obtain the endpoint of OBS in the region.
bucket
Bucket name.
Storage Path
Bucket path or bucket folder path. The path cannot contain three or more consecutive slashes (/).
If the OBS bucket does not have the corresponding path, a folder is automatically generated in the bucket.
Example: cbh/bastion/.../...
Test connectivity
Tests whether the network between the CBH system and the configured OBS bucket is reachable.
The connectivity test checks only the network status between the CBH system and the OBS bucket.
Backup Content
Type of logs to be backed up
- The options are Sysconfig, Session log, System Login, Resource Logon, Command log, File log, and Double auth log.
- Select at least one log type.
- Click OK. You can then view the backup information on the Log Backup tab.
After the configuration is complete, the system backs up the data of the previous day at 00:00 every day and uploads the data to the OBS bucket.
Follow-up Operations
- To back up the logs of a certain day immediately, start the remote backup immediately.
In the Remote Backup To OBS area, select the date of the logs to be backed up and click Backup.
- To disable the remote OBS bucket backup, click Edit. In the displayed dialog box, set Status to Disabled.
- To view or download logs backed up to the OBS bucket, log in to the OBS console and perform operations in the corresponding bucket folder.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
