Integrating with Cloud Active File for RBAC in Veeam Backup for Amazon
APPRECIATIONS! Veeam Backup for Salesforce has been installed safely, and you are now prepared to grant access to your storage and / or Salesforce players. But how do I go about doing this? How do I begin? How do I enable Role Based Access Control( RBAC ) and what steps must I take? How can I make the most of my Azure Active Directory users and parties? The good news is that Veeam Backup for Salesforce makes it incredibly simple and quick to complete. Come get started! A URL may be given to carry out the basic shape after the installation is complete, such as:
You can carry out the basic design if you copy the URL into a supported website. The creation of a central administrator account will be one step of the basic configuration:
Important: the username can be anything. The username of “admin” was used in the screenshot but is not specifically required.Once the local administrator is created and the rest of the configuration is completed, you will receive the following login prompt:
The fact that no web calls out” Single Sign – about with Azure AD” is one thing I would like to emphasize. You can tell that Azure Active Directory connectivity has not yet been set up in this way. The central executive that was initially configured as part of the basic configuration will be the only login credentials at this point. All activities in the Veeam Backup for Salesforce system can be carried out by the national executive. These include, but they are not the only ones:
- Create design options
- Develop storage procedures.
- Keep an eye on storage work
- Make returns
However, it is not useful to manage Veeam Backup for Salesforce from a second account. This would entail many users using the same login to access the administration server. This raises a variety of difficulties:
- unable to identify the person who performs a given action.
- unable to limit access to particular things or functions for particular users.
Veeam Backup for Salesforce is a solution that integrates with Azure Active Directory, allowing you to include groups and / or pre-existing users. Additionally, these customers and types may be given particular responsibilities that specify the tasks they are capable of carrying out. This is referred to as” Role-Based Access Control”( RBC ). Users and organizations using Veeam Backup for Salesforce may be given one of four assignments:
Role’s title | definition |
Administrator | you carry out all shape actions as well as backup and restore operations. This function grants users access to all businesses and Salesforce entities that have been added to Veeam Backup for Salesforce. |
Operator Backup | can manage the protected data, create and manage back policies, and carry out all recover operations. When assigning this part, you can restrict users’ access to businesses and Salesforce businesses. |
Operator Restore | can just carry out maintain operations. When assigning this part, you can restrict users’ access to businesses and Salesforce corporations. |
Viewer | you keep an eye on backup and restore procedures without carrying out any services. When giving users this part, you can restrict their access to businesses and Salesforce organizations. |
No Entry | directly forbids a particular individual or group from managing Veeam Backup for Salesforce |
How do you set up Veeam Backup for Amazon to use RBAC and Azure Activity Directory? Here are the guidelines you must take to complete it:
- With the national administrator account set up as part of the basic setup, access the Veeam Backup for Salesforce administration console.
- Take the following actions:
- Choose” Configuration” from the top right corner.
- Choose” Users and Responsibilities.”
- Choose” Single Sign – one.”
- ” Enable Azure AD Authentication” should be turned on.
- Build Azure Active Directory after logging in to the Azure website:
- Create a membership for an game:
When you choose” New Registration ,” you will be asked for the following details:
- The game registration’s term
- Choose” Supported Account Types” from the options.
- Set up the Redirect URI.
- Computer = Model
- The URL is listed as the” URL for recall” in the Veeam Backup for Salesforce design.
- To grant the game registration permissions using the Microsoft Graph API, follow the steps listed below:
You will now be able to look up or choose the privileges listed below.
- GroupMember.Read.All
- User.Read
- User.Read.All
For instance:
One more crucial notice for the GroupMember. Study. Both All and User. Study. You must” Give administration consent” for all rights in order to receive them. Just click the” Grant administration consent for” link.
- You must release the Azure AD identification information in the Veeam Backup for Salesforce cabinet once the game enrollment has been created and the proper privileges have been granted:
The following areas must be updated:
Name of the Field | Where to find the subject importance |
Domain | the hostname, fully qualified domain title, or IP address with which you will be able to access the Veeam Backup for Salesforce system. |
URL for recall | based on the input website information, automatically generated |
ID of the customer | the registered Azure AD application’s Application( client ) ID. |
Identification of the Tenant | the registered Azure AD application’s Directory ( tenant ) ID. can be found in Azure Active Directory’s” Properties” dose. |
Secret Worth | a secret series that the software uses when requesting tokens to establish its identity. also known as the request word. can be found and generated in the app registration created’s” Certificates & amp, Secrets” Client secrets.” |
7. 7. You can save and confirm once all the data has been entered:
You are immediately prepared to delegate responsibilities and create subscribers or individual parties!
- Within the Salesforce management device Veeam Backup:
- Choose” Configuration” from the top right corner.
- Choose” Users and Responsibilities.”
- Choose” Add User.”
- ” Limited users or group” is the option.
- Choose the appropriate group or individual.
- Choose the appropriate:
- Company
- Organization
- Choose” Delegate Role” from the options.
You are now perfectly set up and prepared to use your Azure AD credentials to log in and process Veeam Backup for Salesforce. Register out of the Veeam Backup for Salesforce console to make sure everything is set up correctly. When the password prompt reappears, it does now appear as follows:
It’s as easy as that! You can link and use Azure Active Directory in your Veeam Backup for Salesforce implementation by simply following the aforementioned instructions.
You must be logged in to post a comment.