Center Backup and Restore

The Cisco Cyber Vision Center command-line interface (CLI) provides commands to back up and restore a Center. Use these commands to migrate a Center from one appliance or VM to another, such as from a cloud VM to a UCS appliance.

The backup archive includes the following information:

  • Operating system settings, such as IP addresses, names, and certificates.

  • Cisco Cyber Vision settings.

  • Cisco Cyber Vision data.

After the restore is complete, the restored Center uses the network identity and data from the backed-up Center.

Backup and restore requirements and limitations

Before restoring a backup archive, make sure that the target Center meets the following requirements:

  • The target appliance or VM has the same number of network interfaces as the backed-up Center.

  • The target Center has the required base network configuration before the archive is transferred. At minimum, configure the eth0 IP address.

  • The target Center interface mode, such as single-interface or dual-interface mode, matches the backed-up Center.

Observe the following limitations when restoring a backup archive:

  • If the restored Center reuses the network identity of the original Center, power off the original appliance before bringing the restored Center online.

  • The Cisco Cyber Vision license is not included in the backup archive. Return the license from the original Center to the Smart Account server if required, and install a license on the restored Center.

  • Report extension packages are not restored automatically. Install the report extension on the restored Center if your deployment requires it.

Back up the Cisco Cyber Vision Center

Use this procedure to create a backup archive of the Cisco Cyber Vision Center before migration, appliance replacement, or recovery operations.

Use this procedure to create a backup archive from an existing Cisco Cyber Vision Center. The backup is generated locally on the Center and can then be copied to another appliance for restore or to another storage location for safekeeping.

Before you begin

  • Ensure that the Cisco Cyber Vision Center is running and accessible.

  • Ensure that you have CLI access to the Center through SSH or console access.

  • Verify that sufficient free space is available on the Center to generate the backup archive.

  • If you plan to copy the backup file off the Center, ensure that a secure transfer method and target location are available.

Procedure

Step 1

Connect to the Center through SSH.

Step 2

Run the following command:

sbs-backup export

A backup file is generated in the /data/tmp/ccv-center-backup/ directory.

In the following example, the generated file is named ccv-center-backup-Center224433labautomccvlocal-5.4.0-20240405112443.tar.gz .

Step 3

Copy the backup file to the target appliance or to a secure storage location for restore.

A backup archive of the Cisco Cyber Vision Center is available in /data/tmp/ccv-center-backup/ and is ready to be transferred or used during a restore procedure.

What to do next

Use the backup archive during the restore procedure or transfer it to a secure storage location for retention according to your operational policy.

Restore the Cisco Cyber Vision Center

Use this procedure to restore Cisco Cyber Vision Center configuration and data from an existing backup archive.

Before you start the restore procedure, copy the Center backup archive to the new Center in the /data/tmp/ directory.

Before you begin

  • Ensure that the backup archive is already copied to the /data/tmp/ directory on the target Center.

  • Ensure that you have CLI access to the Center through SSH or console access.

  • If the restored Center will reuse the previous Center network identity, ensure that the old appliance is powered off.

Procedure

Step 1

Connect to the Center through SSH.

Step 2

Run the following command:

sudo -i sbs-backup import <path to the center backup>

Step 3

Type reboot to restart the Center.

Step 4

Install the report management extension if your deployment requires it.

Step 5

Install a license on the restored Center.

The Cisco Cyber Vision Center is restored from the backup archive and is ready for any required post-restore tasks, such as report extension installation and licensing.

Automate Cisco Cyber Vision Center backups

You can use file-transfer tools to automate Cisco Cyber Vision Center backup export and transfer.

rclone is a command-line program for managing files across local and remote storage systems. You can use it to move or synchronize Center backup files with a remote location.

Procedure

Step 1

Configure rclone for the remote storage system. 

sudo -i
rclone config

For configuration options, see rclone documentation.

Step 2

Use the rclone command to move the backup directory to the remote location.

Syntax:

rclone [options] subcommand <parameters> <parameters...>

For example:

rclone move /data/tmp/ccv-center-backup/ lab_sftp:/srv/pub/

In this example, rclone moves the backup files stored in /data/tmp/ccv-center-backup/ to the remote location lab_sftp:/srv/pub/.

Automate backup export and transfer with a Bash script

You can use a Bash script to run the commands that generate the backup archive and transfer it to a remote location.

  • Generate the backup archive.

  • Transfer the backup archive to a remote location.

For example:

#!/bin/bash
sbs-backup export
rclone move /data/tmp/ccv-center-backup/ lab_sftp:/srv/pub/

Schedule the backup script with cron

You can schedule a Bash script with cron to back up Cisco Cyber Vision data and send the backup file to a remote location.

Use the following commands to create the schedule:

  1. Edit the crontab file:

    crontab -e

  2. Add the cron entry. The following example runs /data/tmp/backup.sh every Saturday at 1:00 a.m.: 

    00 01 * * 6 bash /data/tmp/backup.sh