{"id":521622,"date":"2024-07-29T09:00:00","date_gmt":"2024-07-29T13:00:00","guid":{"rendered":"https:\/\/www.commvault.com\/?p=521622"},"modified":"2024-07-18T12:48:28","modified_gmt":"2024-07-18T16:48:28","slug":"cleanroom-recovery-to-support-saas-ad-and-pave-repave","status":"publish","type":"post","link":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave","title":{"rendered":"Cleanroom Recovery to support SaaS, AD, and Pave + Repave"},"content":{"rendered":"\n<p class=\"\">Starting in August 2024, Commvault\u00ae Cloud Cleanroom\u2122 Recovery will support SaaS, Active Directory, and Repave using \u201cGolden Image.\u201d This release will further emphasize Commvault\u2019s commitment to cyber readiness and resilience for our customers.<\/p>\n\n\n\n<p class=\"\">Cybersecurity breaches are inevitable; customers need to embrace and plan accordingly. Now, SaaS customers can be recovery-ready by conducting cyber recovery testing. Testing has historically been complex and increasingly expensive. This release will enable our SaaS customers to do the same without the complexities and unpredictable expenses.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-cleanroom-recovery-for-saas-how-does-it-work\">Cleanroom Recovery for SaaS: How does it work?<\/h3>\n\n\n\n<p class=\"\"><strong>Cleanroom Recovery for SaaS provides seamless integration with the SaaS control plane: \u00a0<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">For centralized management.<\/li>\n\n\n\n<li class=\"\">Automated scaling of Access nodes and Media Agents to meet the dynamic needs of SaaS workloads.<\/li>\n\n\n\n<li class=\"\">Support for multi-tenancy to accommodate diverse environments.<\/li>\n\n\n\n<li class=\"\">Comprehensive API access for enhanced automation and tool integration.<\/li>\n\n\n\n<li class=\"\">Delivering feature parity between software and SaaS solutions for uniform functionality across deployment models.<\/li>\n<\/ul>\n\n\n\n<p class=\"\">Users can log into their SaaS portal, create recovery groups, and perform cleanroom recovery orchestration into their Azure subscription. The experience remains the same, so SaaS customers can perform regular testing to better understand vulnerabilities, incident response and forensics, and high-speed recovery. Cleanroom Recovery in SaaS is a secure and quick recovery of applications into an on-demand cleanroom to enable reliable cyber recovery.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1044\" height=\"559\" src=\"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/cleanroom-recovery-delivering.png\" alt=\"\" class=\"wp-image-521623\" srcset=\"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/cleanroom-recovery-delivering.png 1044w, https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/cleanroom-recovery-delivering.png?resize=800,428 800w, https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/cleanroom-recovery-delivering.png?resize=768,411 768w\" sizes=\"auto, (max-width: 1044px) 100vw, 1044px\" \/><\/figure>\n\n\n\n<p class=\"\">The SaaS Control Plane is within Commvault\u2019s infrastructure. If a SaaS customer wants to do a cyber recovery testing or investigation, or a recovery, they would need to identify where the Cleanroom needs to aux copy the backup data into Air Gap Protect.<\/p>\n\n\n\n<p class=\"\">Once this is available, they create an Azure subscription and bring their own infrastructure (the networking components), and then orchestrate the recovery of the application using Air Gap Protect into the defined Cleanroom. This process can be automated, and any recovery validation can be performed with this being orchestrated.<\/p>\n\n\n\n<p class=\"\">The difference between software and SaaS is straightforward. In software, the control plane is running inside production, and the first step is to recover it and perform application recovery. In the case of SaaS, the control plane is already within our infrastructure. It is isolated from the customer environment, and we are targeting application recovery.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-active-directory-recovery-cleanroom-domain-controller-recovery\">Active Directory Recovery + Cleanroom Domain Controller Recovery<\/h3>\n\n\n\n<p class=\"\">The August release of Cleanroom Recovery also will include Active Directory. Active Directory is an important component of any application, and when it comes to cyberattacks, attackers don\u2019t just infect a singular component, VMs, or databases. They want to insert themselves into the Active Directory as an admin user, make changes, and modify. So, it\u2019s mission-critical to make sure that AD is recovered from a clean point. With multiple elements involved in recovering applications, organizations need a single management point that can perform mass recovery.<\/p>\n\n\n\n<p class=\"\">Cleanroom Recovery support for Active Directory streamlines the entire recovery and recovery validation process. Customers don\u2019t need to deploy a new Active Directory or manually recover an Active Directory before performing a cleanroom recovery.<\/p>\n\n\n\n<p class=\"\"><strong>Benefits:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">Accelerate investigations to identify and recover lost directory data as quickly as possible, which is crucial for maintaining operational continuity and security within the organization&#8217;s IT infrastructure.<\/li>\n\n\n\n<li class=\"\">Rollback overwritten or corrupted attributes in mass across hundreds of objects at once.<\/li>\n\n\n\n<li class=\"\">Streamlines the recovery process of the entire application, including AD.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-pave-repave-golden-image\">Pave \/ Repave \u2013 \u201cGolden Image\u201d<\/h3>\n\n\n\n<p class=\"\">Cleanroom Recovery of VMs using Golden Image enables customers to use templates to create the Azure VM in the cleanroom before restoring the data to the VM.<\/p>\n\n\n\n<p class=\"\"><strong>Benefits<\/strong>:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">Flexibility to use the public marketplace and private custom templates for Azure VM creation enhances recovery precision and adaptability.<\/li>\n\n\n\n<li class=\"\">It provides a streamlined recovery process by creating a new Azure VM from a template before restoring data. This allows for a clean and efficient restoration with the complexities of OS drive content.<\/li>\n\n\n\n<li class=\"\">Start with a known, trusted configuration, which minimizes the likelihood of reintroducing malicious code into the clean environment.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-prerequisites\">Prerequisites:<\/h3>\n\n\n\n<p class=\"\"><strong>Commvault:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">Application backup aux copied to Commvault Air Gap Protect<\/li>\n<\/ul>\n\n\n\n<p class=\"\"><strong>Customer Environment:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">Active Directory or other identity management, free of infection, is already up and running in the cleanroom.<\/li>\n\n\n\n<li class=\"\">A clean Azure tenant (customer subscription) with\n<ul class=\"wp-block-list\">\n<li class=\"\">Network resources created and configured.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li class=\"\">Resource groups and storage accounts created and configured.<\/li>\n\n\n\n<li class=\"\">Key management service encryption key configured.<\/li>\n\n\n\n<li class=\"\">IAM Access is configured to access the resources.<\/li>\n<\/ul>\n\n\n\n<p class=\"\"><strong>Key Requirements for SaaS:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">CRR subscription is required.<ul><li>10 TB increments<\/li><\/ul>\n<ul class=\"wp-block-list\">\n<li class=\"\">Usage is metered based on the amount of data configured in \u201cRecovery Groups.\u201d<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p class=\"\"><strong>Support Matrix:<\/strong><\/p>\n\n\n\n<p class=\"\">Workloads<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">VM\u2019s VMware (On-prem, AWS VMC, Azure AVS, Google Cloud VMware, OCI VMware, Azure, AWS, Hyper-V)<\/li>\n\n\n\n<li class=\"\">Active Directory (installed on any of the VMs)<\/li>\n\n\n\n<li class=\"\">Databases (SQL server, Oracle, and DB2 installed on VMs)<\/li>\n<\/ul>\n\n\n\n<p class=\"\">Cleanroom Target<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">MSFT Azure<\/li>\n<\/ul>\n\n\n\n<p class=\"\">Storage<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"\">Air Gap Protect&nbsp;<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Move supports Commvault\u2019s commitment to cyber readiness.<\/p>\n","protected":false},"author":171,"featured_media":521624,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_custom_css":"","_custom_js_footer":"","_page_background_color":"","_remove_from_search":false,"_dark_mode":false,"_light_footer_mode":false,"_sidebar_form":{"id":"","name":"","cta":"","redirect":""},"_alert_notification_bar":{"show":true,"bg_color":"","content":"","call_to_action_label":"","call_to_action_link":""},"_footer_cta":{"show":false,"title":"","subtitle":"","cta_text":"","cta_link":"","background":{"id":0,"url":""}},"_cmv_customer_logo":{"id":0,"url":""},"_jetpack_memberships_contains_paid_content":false,"i18n_hreflangs":"","footnotes":""},"categories":[207,1479],"tags":[],"cmv_author":[1466],"class_list":{"0":"post-521622","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-backup-2","8":"category-cleanroom-recovery-2","9":"cmv_author-toussaint-brock","10":"entry"},"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v23.0 (Yoast SEO v23.0) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Cleanroom Recovery to support SaaS, AD, and Pave + Repave | Blog<\/title>\n<meta name=\"description\" content=\"Starting in August 2024, Commvault\u00ae Cloud Cleanroom\u2122 Recovery will support SaaS, Active Directory, and Repave using \u201cGolden Image.\u201d This release will further emphasize Commvault\u2019s commitment to cyber readiness and resilience for our customers.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cleanroom Recovery to support SaaS, AD, and Pave + Repave\" \/>\n<meta property=\"og:description\" content=\"Starting in August 2024, Commvault\u00ae Cloud Cleanroom\u2122 Recovery will support SaaS, Active Directory, and Repave using \u201cGolden Image.\u201d This release will further emphasize Commvault\u2019s commitment to cyber readiness and resilience for our customers.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave\" \/>\n<meta property=\"og:site_name\" content=\"Commvault - English - United States\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Commvault\/\" \/>\n<meta property=\"article:published_time\" content=\"2024-07-29T13:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-07-18T16:48:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"unguyen\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@commvault\" \/>\n<meta name=\"twitter:site\" content=\"@commvault\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"unguyen\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Cleanroom Recovery to support SaaS, AD, and Pave + Repave | Blog","description":"Starting in August 2024, Commvault\u00ae Cloud Cleanroom\u2122 Recovery will support SaaS, Active Directory, and Repave using \u201cGolden Image.\u201d This release will further emphasize Commvault\u2019s commitment to cyber readiness and resilience for our customers.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave","og_locale":"en_US","og_type":"article","og_title":"Cleanroom Recovery to support SaaS, AD, and Pave + Repave","og_description":"Starting in August 2024, Commvault\u00ae Cloud Cleanroom\u2122 Recovery will support SaaS, Active Directory, and Repave using \u201cGolden Image.\u201d This release will further emphasize Commvault\u2019s commitment to cyber readiness and resilience for our customers.","og_url":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave","og_site_name":"Commvault - English - United States","article_publisher":"https:\/\/www.facebook.com\/Commvault\/","article_published_time":"2024-07-29T13:00:00+00:00","article_modified_time":"2024-07-18T16:48:28+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png","type":"image\/png"}],"author":"unguyen","twitter_card":"summary_large_image","twitter_creator":"@commvault","twitter_site":"@commvault","twitter_misc":{"Written by":"unguyen","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#article","isPartOf":{"@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave"},"author":{"name":"unguyen","@id":"https:\/\/commvault-new.go-vip.net\/#\/schema\/person\/dba72b5a781f4b5fd095bc52380eb45c"},"headline":"Cleanroom Recovery to support SaaS, AD, and Pave + Repave","datePublished":"2024-07-29T13:00:00+00:00","dateModified":"2024-07-18T16:48:28+00:00","mainEntityOfPage":{"@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave"},"wordCount":784,"publisher":{"@id":"https:\/\/commvault-new.go-vip.net\/#organization"},"image":{"@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#primaryimage"},"thumbnailUrl":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png","articleSection":["Backup and Recovery","Cleanroom Recovery"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave","url":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave","name":"Cleanroom Recovery to support SaaS, AD, and Pave + Repave | Blog","isPartOf":{"@id":"https:\/\/commvault-new.go-vip.net\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#primaryimage"},"image":{"@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#primaryimage"},"thumbnailUrl":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png","datePublished":"2024-07-29T13:00:00+00:00","dateModified":"2024-07-18T16:48:28+00:00","description":"Starting in August 2024, Commvault\u00ae Cloud Cleanroom\u2122 Recovery will support SaaS, Active Directory, and Repave using \u201cGolden Image.\u201d This release will further emphasize Commvault\u2019s commitment to cyber readiness and resilience for our customers.","breadcrumb":{"@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#primaryimage","url":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png","contentUrl":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png","width":1200,"height":628},{"@type":"BreadcrumbList","@id":"https:\/\/www.commvault.com\/blogs\/cleanroom-recovery-to-support-saas-ad-and-pave-repave#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.commvault.com\/"},{"@type":"ListItem","position":2,"name":"Cleanroom Recovery to support SaaS, AD, and Pave + Repave"}]},{"@type":"WebSite","@id":"https:\/\/commvault-new.go-vip.net\/#website","url":"https:\/\/commvault-new.go-vip.net\/","name":"Commvault - English - United States","description":"","publisher":{"@id":"https:\/\/commvault-new.go-vip.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/commvault-new.go-vip.net\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/commvault-new.go-vip.net\/#organization","name":"Commvault","url":"https:\/\/commvault-new.go-vip.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/commvault-new.go-vip.net\/#\/schema\/logo\/image\/","url":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/03\/logo-commvault-horizontal.jpg?quality=80","contentUrl":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/03\/logo-commvault-horizontal.jpg?quality=80","width":1200,"height":628,"caption":"Commvault"},"image":{"@id":"https:\/\/commvault-new.go-vip.net\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Commvault\/","https:\/\/x.com\/commvault","https:\/\/www.instagram.com\/commvault\/","https:\/\/www.linkedin.com\/company\/commvault","https:\/\/www.youtube.com\/user\/commvault","https:\/\/en.wikipedia.org\/wiki\/Commvault"]},{"@type":"Person","@id":"https:\/\/commvault-new.go-vip.net\/#\/schema\/person\/dba72b5a781f4b5fd095bc52380eb45c","name":"unguyen","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/commvault-new.go-vip.net\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/564707f567262bb740287c608ef955e5?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/564707f567262bb740287c608ef955e5?s=96&d=mm&r=g","caption":"unguyen"}}]}},"jetpack_featured_media_url":"https:\/\/www.commvault.com\/wp-content\/uploads\/2024\/07\/Social_Cleanroom_Blog_LinkedIN-1.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/posts\/521622","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/users\/171"}],"replies":[{"embeddable":true,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/comments?post=521622"}],"version-history":[{"count":3,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/posts\/521622\/revisions"}],"predecessor-version":[{"id":521629,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/posts\/521622\/revisions\/521629"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/media\/521624"}],"wp:attachment":[{"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/media?parent=521622"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/categories?post=521622"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/tags?post=521622"},{"taxonomy":"cmv_author","embeddable":true,"href":"https:\/\/www.commvault.com\/wp-json\/wp\/v2\/cmv_author?post=521622"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}