Cloud Backup and Recovery
Cloud Backup and Recovery
- What's New
- Function Overview
- Service Overview
-
Billing
- Billing Overview
- Billing Modes
- Billed Items
- Billing Examples
- Billing Mode Changes
- Renewing Subscriptions
- Bills
- Arrears
- Billing Termination
- Cost Management
-
Billing FAQ
- How Is CBR Billed?
- What Is the Billing Cycle of Pay-per-Use Vaults?
- How Do I Disable CBR?
- How Do I Unsubscribe from CSBS or VBS Resource Packages?
- Why Is a Message Displayed Indicating Insufficient User Rights When I Create a Policy?
- What Can I do If a Yearly/Monthly-Billed Vault Is About to Expire?
- How Do I Unsubscribe from a Vault?
- What Should I Do If the Fee Is Too High When I Expand the Capacity of a Vault?
- Can I Change a Server Backup Vault to a Disk Backup Vault or the Other Way Around?
- Why Are CBR Backups Displayed on the VBS Console?
- What Charges Will I Incur When Using a Backup to Create an Image?
- How Do I Purchase a CBR Replication Traffic Package?
- Can I Change the Protection Type of an Existing Vault?
- What Resources Do I Need to Implement Cross-Region Backup Replication?
- Why AM I Still Being Billed After a Resource is Deleted?
- Getting Started
- User Guide
-
Hybrid Cloud Backup Feature Guide
- Hybrid Cloud Backup
- Application Scenarios
- Constraints and Limitations
-
VMware Backup
- VMware Backup Process
- Downloading the eBackup Image Template
- Enabling Cloud and On-premises Communication
- Planning the Network
- Installing eBackup
- Configuring eBackup
- Adding a VMware Protected Environment
- Preparing for VMware Backup Storage
- Performing VMware Backup
- Restoring Data Using VMware Backups
- Managing a Protected VMware Environment
- Managing VMware Backup Storage
- Managing VMware Backups
- Common Operations
-
Best Practices
-
Using a Custom Script to Implement Application-Consistent Backup
- Using a Custom Script to Implement Consistent Backup for MySQL
- Using a Custom Script to Implement Consistent Backup for SAP HANA
- Using a Custom Script to Implement Consistent Backup for Other Linux Applications
- Troubleshooting a Custom Script Error
- Verifying the Application-Consistent Backup Result (Linux)
- Verifying the Application-Consistent Backup Result (Windows)
- Protecting SQL Server in Failover Cluster Mode
- Protecting SQL Server in Always on Availability Groups Mode
- Performing Periodic Recovery Drills Using the Backup Data
- Creating Backup Policies Based on Service Tiering
- Change History
-
Using a Custom Script to Implement Application-Consistent Backup
- API Reference
- SDK Reference
-
Troubleshooting
- Failed to Execute a Backup Task
- Failed to Delete a Backup
- Failed to Expand the Vault Capacity
- Failed to Attach Disks
- Data Disks Are Not Displayed After a Windows Server Is Restored
- Failed to Cancel Backup Sharing
- Failed to Download or Install the Agent Required by Application-Consistent
- Failed to Install Agent in Windows, with A Message Displayed Indicating User rdadmin Already Exists
- Failed to Implement Application-Consistent Backup
- A Server Created Using an Image Enters Maintenance Mode After Login
- Failed to Migrate VMware Backups to the Cloud
- Failed to Restore a VMware Backup to a Cloud Server
- An Error Message Is Displayed Indicating that the Path of a Storage Unit Is Invalid
- Failed to Import an eBackup Image Template, with an Error Displayed Indicating That the File Is Invalid
- The Download Dialog Box Disappears When I Download eBackup on a VMware VM
-
FAQs
-
Concepts
- What Are Full Backup and Incremental Backup?
- What Are the Differences Between Backup and Disaster Recovery?
- What Are the Differences Between Backups and Snapshots?
- Why Is My Backup Size Larger Than My Disk Size?
- What Are the Differences Between Backups and Images?
- What Are the Differences Between Cloud Server Backup and Cloud Disk Backup?
- Why Does the Used Capacity of a Vault Change Only Slightly After I Deleted Unwanted Backups?
-
Billing
- How Is CBR Billed?
- How Large of a Vault Do I Need?
- What Is the Billing Cycle and Pay Time of the Pay-per-Use Mode?
- How Do I Disable CBR?
- Why Is a Message Displayed Indicating Insufficient User Rights When I Create a Policy?
- What Can I do If a Yearly/Monthly-Billed Vault Is About to Expire?
- How Do I Unsubscribe from a Vault?
- Can I Change a Server Backup Vault to a Disk Backup Vault or the Other Way Around?
- What Charges Will I Incur When Using a Backup to Create an Image?
- Can I Change the Protection Type of an Existing Vault?
-
Backup
- Do I Need to Stop the Server Before Performing a Backup?
- Can I Back Up a Server Deployed with Databases?
- How Can I Distinguish Automatic Backups From Manual Backups?
- Can I Choose to Back Up Only Some Partitions of a Disk?
- Does CBR Support Cross-Region Backup?
- Can I Back Up Two Disks to One Target Disk?
- How Do I Replicate a Disk to the Same AZ in a Region as the Source Disk?
- Will the Server Performance Be Affected If I Delete Its Backups?
- Can I Use Its Backup for Restoration After a Resource Is Deleted?
- How Many Backups Can I Create for a Resource?
- Can I Use an Incremental Backup to Restore Data After a Full Backup Is Deleted?
- Can I Stop an Ongoing Backup Task?
- How Do I Reduce the Vault Space Occupied by Backups?
- How Do I View the Size of Each Backup?
- How Do I View My Backup Data?
- How Long Will My Backups Be Kept?
-
Restoration
- Do I Need to Stop the Server Before Restoring Data Using Backups?
- Can I Use a System Disk Backup to Recover an ECS?
- Do I Need to Stop the Server Before Restoring Data Using Disk Backups?
- Can a Server Be Restored Using Its Backups After It Is Changed?
- Can a Disk Be Restored Using Its Backups After Its Capacity Is Expanded?
- What Can I Do if the Password Becomes a Random One After I Use a Backup to Restore a Server or Use an Image to Create a Server?
- What Changes Will Be Made to the Original Backup When I Use the Backup to Restore a Server?
- How Do I Restore Data on the Original Server to a New Server?
- How Do I Restore a Data Disk Backup to a System Disk?
- Can I Use CBR to Restore Data to Any Point When the Data Was Backed Up?
- Can I Stop an Ongoing Restoration Task?
-
Policies
- How Do I Configure Automatic Backup for a Server or Disk?
- Why Does the Retention Rule Not Take Effect After Being Changed?
- How Do I Back Up Multiple Resources at a Time?
- How Do I Retain My Backups Permanently?
- How Can I Cancel Auto Backup or Auto Replication?
- How Can I Have the System Automatically Delete Backups That I No Longer Need?
- Why Aren't My Backups Deleted Based on the Retention Rule?
- Optimization
-
Others
- Is There a Quota for CBR Vaults?
- Can I Merge My Vaults?
- How Do I Delete a Backup That Has Been Used to Create an Image While Retaining the Image?
- What Can I Do If the Vault Capacity Is Not Enough?
- Will Backup Continue If the Usage of a Vault Reaches the Upper Limit?
- Can I Export Disk Backup Data to Another Server?
- Why Do I Need a Vault to Accept the Image Shared to Me?
- Can I Download Backup Data to a Local PC?
- How Do I Copy Disk Data to Another Account?
-
Concepts
- Videos
On this page
Help Center/
Cloud Backup and Recovery/
User Guide/
Appendix/
Agent Security Maintenance/
Replacing the Server Certificate
Replacing the Server Certificate
Updated on 2025-02-06 GMT+08:00
For security purposes, you may want to use a Secure Socket Layer (SSL) certificate issued by a third-party certification authority. The Agent allows you to replace authentication certificates and private key files as long as you provide the authentication certificates and private-public key pairs. The update to the certificate can take effect only after the Agent is restarted, hence you are advised to update the certificate during off-peak hours.
Prerequisites
- The username and password for logging in to the console have been obtained.
- The username and password for logging in to a server have been obtained.
- New certificates in the X.509v3 format have been obtained.
Context
- The Agent is pre-deployed with the Agent CA certificate bcmagentca, private key file of the CA certificate server.key (), and authentication certificate server.crt. All these files are saved in /home/rdadmin/Agent/bin/nginx/conf (if you use Linux) or \bin\nginx\conf (if you use Windows).
- You need to restart the Agent after replacing a certificate to make the certificate effective.
Replacing the Server Certificate in Linux
- Log in the Linux server with the Agent installed.
- Run the TMOUT=0 command to prevent PuTTY from exiting due to session timeout.
NOTE:
After you run the preceding command, the system continues to run even when no operation is performed, which brings security risks. To ensure system security, run the exit command to exit the system after you finish the operations.
- Run the su - rdadmin command to switch to user rdadmin.
- Run the cd /home/rdadmin/Agent/bin command to go to the script path.
NOTE:
The installation path of the Agent is /home/rdadmin/Agent.
- Run the sh agent_stop.sh command to stop the Agent running.
- Place the new certificates and private key files in the specified directory.
NOTE:
Place new certificates in the /home/rdadmin/Agent/bin/nginx/conf directory.
- Run the /home/rdadmin/Agent/bin/agentcli chgkey command.
The following information is displayed:
Enter password of admin:
NOTE:
admin is the username configured during the Agent installation.
- Type the login password of the Agent and press Enter.
The following information is displayed:
Change certificate file name:
- Enter a name for the new certificate and press Enter.
NOTE:
If the private key and the certificate are the same file, names of the private key and the certificate are identical.
The following information is displayed:
Change certificate key file name:
- Enter a name for the new private key file and press Enter.
The following information is displayed:
Enter new password: Enter the new password again:
- Enter the protection password of the private key file twice. The certificate is then successfully replaced.
- Run the sh agent_start.sh command to start the Agent.
Replacing the Server Certificate in Windows
- Log in to the Windows server with the Agent installed.
- Open the CLI and go to the Installation path\bin directory.
- Run the agent_stop.bat command to stop the Agent running.
- Place the new certificates and private key files in the specified directory.
NOTE:
Place new certificates in the installation path\bin\nginx\conf directory.
- Run the agentcli.exe chgkey command.
The following information is displayed:
Enter password of admin:
NOTE:
admin is the username configured during the Agent installation.
- Enter a name for the new certificate and press Enter.
NOTE:
If the private key and the certificate are the same file, names of the private key and the certificate are identical.
The following information is displayed:Change certificate key file name:
- Enter a name for the new private key file and press Enter.
The following information is displayed:
Enter new password: Enter the new password again:
- Enter the protection password of the private key file twice. The certificate is then successfully replaced.
- Run the agent_start.bat command to start the Agent.
Parent topic: Agent Security Maintenance
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
The system is busy. Please try again later.
