- Login to Azure portal to create an Azure Site Recovery Vault
- Download Microsoft Azure Site Recovery Provider and install it on both SCVMM servers.
- Register the Microsoft Azure Site Recovery Provider with ASR
- Configure SCVMM cloud for protection in the ASR portal
- Download ASR runbooks for Azure Pack from Microsoft Script Center and import them into Service Management Automation
Create a DR Plan/add-onTo offer a DR plan, you need to create and publish a plan, link a DR add-on to it and finally create a corresponding private recovery plan on secondary Azure Pack admin portal. To explain these steps in detail, let us use a plan named “Gold Plan” that we will link to a DR add-on. To create a DR add-on expand PLAN, click on CREATE ADD-ON and give it a name as “DRAddon”. Now your add-on is created but it still needs to be configured. To configure an add-on click on the ADD-ONS in your Azure Pack and select the newly created add-on. You will see that under add-on services, “Virtual Machine Clouds” is not activated.
Click on the “Virtual Machine Clouds” and select the name of “VMM MANAGEMENT SERVER” and “VIRTUAL MACHINE CLOUD” that you have configured to use with Azure Pack in your primary data center. Complete rest of the details like usage limit of cores, memory etc. depending upon your offering and check mark “Enable protection for all virtual machines” under custom settings, which is the latest addition with Azure Pack UR4 release. You have now successfully created a DR add-on and next thing is to link it to the plan. To Link an add-on click on “Link a plan” and select “Gold Plan”. By this step our DR Plan is ready for customers but this plan needs to have a corresponding private plan on the secondary Azure Pack. This private plan is the one that ensures that tenant’s subscriptions have the exact same services and offerings on the DR site. ASR automatically adds your tenant’s subscriptions from primary plan to the private plan on the secondary data center which helps in providing a consistent and seamless experience to tenants across both the datacenters. To create a private plan login to the secondary Azure Pack admin portal and create a plan named “Gold Plan–Recovery”. It is important to note that the name of private plan should start with primary plan name followed by the suffix that could be anything but it would be recommended to use “-Recovery” for ease of identification Once the private plan is created, you need to configure it similarly as mentioned in the earlier steps by selecting name of the secondary datacenter SCVMM Server and Virtual Machine Cloud.
Master RunbookASR runbooks help you deploy protection automatically, taking away the pain of manually enabling protection for each tenant. There are five runbooks in total that you need to import into your primary Azure Pack admin portal but you only need to configure and schedule the master runbook named “Invoke-AzureSiteRecoveryProtectionJob.ps1”. Rest of the runbooks are internally invoked by the master runbook for querying tenant subscriptions, enabling protection and adding copy of subscriptions from primary Azure Pack admin portal to secondary Azure Pack admin portal. For scheduling and configuring the master runbook browse “AUTOMATION” in primary Azure Pack admin portal, select the master runbook and click on schedule. Provide a user friendly name to the schedule and specify frequency and time for the runbook. To complete the schedule you have to provide name of the assets as runbook parameters. The complete details of asset creation can be found at Microsoft Script Center but to give you an idea, here is an example of creating one asset. To create an asset for “PrimarySiteAdminConnection” parameter, browse to “AUTOMATION”, click “ASSETS” on the top and select “ADD SETTINGS” at the bottom middle 1.) Choose ADD CONNECTION 2.) Select name of connection type as “MgmntSvcAdmin” and name it Primary Azure Pack Login 3.) Provide Computer Name, Password, Username of the primary Azure Pack Similarly you can create rest of the assets and provide name of these assets in the master runbook.
Onboarding TenantsTenant onboarding is seamless as Tenants can see the new DR Plan/Add-on in their portal. As a tenant, one will subscribe to a DR Plan by going to his tenant portal account and signing up for the new plan. Once it is done, he has to add DR add-on to his subscription. Tenant account portal will look like below. Tenant can create virtual machines in his portal and they will be shown in the portal. There are no more additional steps for a tenant to perform !!
Automatic ProtectionOnce the tenant has subscribed to the plan, ASR runbook will do the following two tasks:
- Automatically detect subscriptions with DR-enabled plan on primary Azure Pack admin portal and add the copy of that subscription to the secondary Azure Pack private plan
- Enable protection for the tenant virtual machines and replicate all the virtual machines to the recovery Azure pack