Skip to main content
All CollectionsEnterprise WorkloadsReference Reads for Enterprise WorkloadsData Lock for Enterprise Workloads
Data Lock for preventing malicious or accidental deletion of recovery points in Enterprise Workloads
Data Lock for preventing malicious or accidental deletion of recovery points in Enterprise Workloads

Enable datalock for immutable recovery points.

Updated over 3 months ago

Enterprise Workloads Editions: ❌ Business | ✅ Enterprise | ✅ Elite

Ransomware attacks are increasing at an exponential rate. Backup environments are popular targets for ransomware attacks. There can be various reasons when the backup copies can be modified or deleted. When it comes to protecting your data in the event of a ransomware attack, recovery points are critical components of your organization’s business strategy and data recovery plan.

Organizations can enable Data Lock to prevent modification, deletion, or tampering of business-critical data and make it immutable. Immutability has gained widespread attention with rising ransomware attacks that put enterprise data and business continuity at huge risk.

The following infographic displays how an immutable backup set responds to a threat from rogue admin or ransomware compared to a mutable backup set.

PHX_DataLock1.png

Benefits

Here are key benefits of enabling Data Lock on the backup policies:

  • Provide complete protection to the backed-up data from rogue admin threats.

  • After applying the Data Lock, no one can delete, modify, or encrypt the backup copies.

  • Easily restores the backed-up copies to its clean state.

  • Alert notification and confirmation emails for any suspicious modification to the backup content setting.

Use cases

Rogue admin

Let’s say your organization’s rogue administrator, who is a super admin or any person who has acquired the compromised super admin credentials, gains access to your backup environment and manually deletes the backup copies. Data Lock prevents modification, deletion, or tampering of such critical data.

Data_Lock_Use_case_RA1.png

Ransomware attack

Let’s say your organization's administrator or any employee received an email from an unidentified source and for some reason, clicked on the attachment present in this phishing email. Since the ransomware attacker has access to your backup environment, they can modify or delete your backup copies. Data Lock will prevent the deletion or modification of backup copies.

Accidental deletion

When your organization’s administrator with access to the backup management interface accidentally deletes or reduces the intended retention period this results in the loss of backup copies. In the process, he or she may accidentally delete some business-critical backups. Data Lock will prevent the accidental deletion of such data.

Who can access this feature

The availability of the Data Lock feature applies, by default, only to the Enterprise and Elite editions. All admins will have access to this feature.

Support matrix

Workloads

Entities

Applied on

License Editions

Hybrid Workloads:

  • VMware

  • Hyper-V

  • Nutanix AHV

  • File Servers

  • NAS

  • MS SQL

  • Oracle DTC

  • Oracle PBS

  • Backup sets

  • Recovery points

  • Backup policy

  • Backup Mount (For Oracle PBS)

  • Elite

  • Enterprise

Azure VMs

  • Backup sets

  • Recovery points

Backup policy

  • Elite

  • Enterprise

AWS Workloads

  • EC2 resources

  • EBS resources

  • RDS resources

  • DynamoDB resources

  • Redshift resources

Snapshots

Backup policy

  • Elite

  • Enterprise


Did this answer your question?