CP-10 (2)
This template can enable the Automated backup feature for the IaaS Sql server VM by leveraging the SQL IAAS Agent Extension. The automated backup that uses this feature lets us configure the backup storage location, retention period, and encryption credentials. Read this link for more information.
The SQL IAAS Agent Extension can be seen here. You can configure the parameters:
- Retention Period
- Storage Account
- Enable Encryption(this is to enable encryption of the Database backups at rest)
- Credential (This is needed when Encryption is enabled)
The Automated backup feature may be enabled from the 'SQL Server Configuration' tab inside the IaaS SQL Server VM in Azure portal or by using the IaaS Extension using powershell.
To verify if the Automated backup has been enabled for the IaaS Sql Server VM
- Goto the Storage Account --> Containers
- Check the automaticbackup folder. This folder will contain the .cer, .pvk, .key files for the backup
- There will be another folder with the name <>-mssqlserver. Replace <>-with the IaaS Sql Server VM name.
- Login to the Sql server VM and connect to SSMS
- In Security --> Credentials, a new credential will be added with the name 'AutoBackup_Credential'
- Create a new database in the Sql Server
- In Storage Account --> Containers --> <>-mssqlserver, the .bak(backup file) and .log(log files) will be written to the storage account
- .Bak and .Log files are then written as per SQL Server load.
CP-10 (2): The information system implements transaction recovery for systems that are transaction-based.
This Azure Blueprint Solution installs the SQL IAAS agent extension to each SQL VM in the domain with Automated backup enabled.