创建和配置恢复服务保管库Create and configure a Recovery Services vault

创建恢复服务保管库Create a Recovery Services vault

恢复服务保管库是用于存储在不同时间创建的备份和恢复点的实体。A Recovery Services vault is an entity that stores the backups and recovery points created over time. 恢复服务保管库还包含与受保护虚拟机关联的备份策略。The Recovery Services vault also contains the backup policies that are associated with the protected virtual machines.

若要创建恢复服务保管库,请执行以下操作:To create a Recovery Services vault:

  1. Azure 门户中登录到自己的订阅。Sign in to your subscription in the Azure portal.

  2. 在左侧菜单中,选择“所有服务”。On the left menu, select All services.


  3. 在“所有服务”对话框中,输入“恢复服务”。In the All services dialog box, enter Recovery Services. 资源列表根据输入进行筛选。The list of resources filters according to your input. 在资源列表中,选择“恢复服务保管库”。In the list of resources, select Recovery Services vaults.


    此时会显示订阅中的恢复服务保管库列表。The list of Recovery Services vaults in the subscription appears.

  4. 在“恢复服务保管库”仪表板上,选择“添加”。On the Recovery Services vaults dashboard, select Add.


    此时会打开“恢复服务保管库”对话框。The Recovery Services vault dialog box opens. 提供“名称”、“订阅”、“资源组”和“位置”的值。Provide values for the Name, Subscription, Resource group, and Location.


    • 名称:输入一个友好名称以标识此保管库。Name: Enter a friendly name to identify the vault. 名称对于 Azure 订阅必须是唯一的。The name must be unique to the Azure subscription. 指定的名称应至少包含 2 个字符,最多不超过 50 个字符。Specify a name that has at least two, but not more than 50 characters. 名称必须以字母开头且只能包含字母、数字和连字符。The name must start with a letter and consist only of letters, numbers, and hyphens.

    • 订阅:选择要使用的订阅。Subscription: Choose the subscription to use. 如果你仅是一个订阅的成员,则会看到该名称。If you're a member of only one subscription, you'll see that name. 如果不确定要使用哪个订阅,请使用默认的(建议的)订阅。If you're not sure which subscription to use, use the default (suggested) subscription. 仅当工作或学校帐户与多个 Azure 订阅关联时,才会显示多个选项。There are multiple choices only if your work or school account is associated with more than one Azure subscription.

    • 资源组:使用现有资源组或创建新组。Resource group: Use an existing resource group or create a new one. 要查看订阅中可用的资源组列表,请选择“使用现有资源”,然后从下拉列表框中选择一个资源。To see the list of available resource groups in your subscription, select Use existing, and then select a resource from the drop-down list box. 若要创建新资源组,请选择“新建”,然后输入名称。To create a new resource group, select Create new and enter the name. 有关资源组的完整信息,请参阅 Azure 资源管理器概述For complete information about resource groups, see Azure Resource Manager overview.

    • 位置:选择保管库的地理区域。Location: Select the geographic region for the vault. 要创建保管库以保护虚拟机,保管库必须与虚拟机位于同一区域中。To create a vault to protect virtual machines, the vault must be in the same region as the virtual machines.


      如果不确定 VM 的位置,请关闭对话框。If you're not sure of the location of your VM, close the dialog box. 转到门户中的虚拟机列表。Go to the list of virtual machines in the portal. 如果虚拟机位于多个区域,请在每个区域中创建一个恢复服务保管库。If you have virtual machines in several regions, create a Recovery Services vault in each region. 先在第一个位置创建保管库,然后再为其他位置创建保管库。Create the vault in the first location, before you create the vault for another location. 无需指定存储帐户即可存储备份数据。There's no need to specify storage accounts to store the backup data. 恢复服务保管库和 Azure 备份服务会自动处理这种情况。The Recovery Services vault and the Azure Backup service handle that automatically.

  5. 准备好创建恢复服务保管库后,选择“创建”。When you're ready to create the Recovery Services vault, select Create.


    创建恢复服务保管库可能需要一段时间。It can take a while to create the Recovery Services vault. 可在门户右上角“通知”区域监视状态通知。Monitor the status notifications in the Notifications area at the upper-right corner of the portal. 创建保管库后,它会显示在“恢复服务保管库”的列表中。After your vault is created, it's visible in the list of Recovery Services vaults. 如果未看到创建的保管库,请选择“刷新”。If you don't see your vault, select Refresh.


设置存储冗余Set storage redundancy

Azure 备份会自动处理保管库的存储。Azure Backup automatically handles storage for the vault. 需要指定如何复制该存储。You need to specify how that storage is replicated.


在保管库中配置备份之前,必须更改恢复服务保管库的“存储复制类型”(本地冗余/异地冗余)。Changing Storage Replication type (Locally redundant/ Geo-redundant) for a Recovery Services vault has to be done before configuring backups in the vault. 配置备份后,将禁用修改选项。Once you configure backup, the option to modify is disabled.

  1. 在“恢复服务保管库”窗格中,选择新保管库。From the Recovery Services vaults pane, select the new vault. 在“设置”部分下,选择“属性”。 Under the Settings section, select Properties.

  2. 在“属性”中的“备份配置”下,选择“更新”。 In Properties, under Backup Configuration, select Update.

  3. 选择存储复制类型,然后选择“保存”。Select the storage replication type, and select Save.


    • 如果使用 Azure 作为主要备份存储终结点,则我们建议继续使用默认的“异地冗余”设置。We recommend that if you're using Azure as a primary backup storage endpoint, continue to use the default Geo-redundant setting.
    • 如果不使用 Azure 作为主要的备份存储终结点,则请选择“本地冗余”,减少 Azure 存储费用。If you don't use Azure as a primary backup storage endpoint, then choose Locally redundant, which reduces the Azure storage costs.
    • 详细了解异地冗余本地冗余Learn more about geo and local redundancy.

设置跨区域还原Set Cross Region Restore

还原选项“跨区域还原(CRR)”允许你在次要的 Azure 配对区域中还原数据。The restore option Cross Region Restore (CRR) allows you to restore data in a secondary, Azure paired region.

它支持以下数据源:It supports the following datasources:

  • Azure VM(正式版)Azure VMs (general availability)
  • Azure VM 上承载的 SQL 数据库(预览版)SQL databases hosted on Azure VMs (preview)
  • Azure VM 上承载的 SAP HANA 数据库(预览版)SAP HANA databases hosted on Azure VMs (preview)

使用“跨区域还原”,可以:Using Cross Region Restore allows you to:

  • 存在审核或合规性要求时开展演练conduct drills when there's an audit or compliance requirement
  • 在主要区域中发生灾难时还原数据restore the data if there's a disaster in the primary region

还原 VM 时,可以还原 VM 或其磁盘。When restoring a VM, you can restore the VM or its disk. 如果是从 Azure VM 上承载的 SQL/SAP HANA 数据库进行还原,则可以还原数据库或其文件。If you're restoring from SQL/SAP HANA databases hosted on Azure VMs, then you can restore databases or their files.

若要选择此功能,请从“备份配置”窗格中选择“启用跨区域还原”。 To choose this feature, select Enable Cross Region Restore from the Backup Configuration pane.

由于此过程是在存储级别执行的,因此会有定价影响Since this process is at the storage level, there are pricing implications.


开始之前:Before you begin:

  • 有关支持的托管类型和区域的列表,请查看支持矩阵Review the support matrix for a list of supported managed types and regions.
  • Azure VM 的跨区域还原 (CRR) 功能现在已正式发布。The Cross Region Restore (CRR) feature for Azure VMs is now in general availability.
  • SQL 和 SAP HANA 数据库的“跨区域还原”功能目前为预览版。Cross Region Restore for SQL and SAP HANA databases is in preview.
  • CRR 是保管库级别的选用功能(默认已禁用),适用于任何 GRS 保管库。CRR is a vault level opt-in feature for any GRS vault (turned off by default).
  • 选择启用后,备份项最长可能需要在 48 小时后才出现在次要区域中。After opting-in, it might take up to 48 hours for the backup items to be available in secondary regions.
  • 目前,Azure 资源管理器 Azure VM 和加密 Azure VM 支持用于 Azure VM 的 CRR。Currently, CRR for Azure VMs is supported for Azure Resource Manager Azure VMs and encrypted Azure VMs. 不支持经典 Azure VM。Classic Azure VMs won't be supported. 当有更多管理类型支持 CRR 时,将会 自动 注册这些类型。When additional management types support CRR, then they'll be automatically enrolled.
  • 目前,在首次启用保护后,无法将跨区域还原恢复为 GRS 或 LRS。Cross Region Restore currently can't be reverted back to GRS or LRS once the protection is initiated for the first time.
  • 目前,从主要区域到次要区域的 RPO 最多为 12 个小时,即使读取访问异地冗余存储 (GRS) 复制为 15 分钟。Currently, secondary region RPO is up to 12 hours from the primary region, even though read-access geo-redundant storage (RA-GRS) replication is 15 minutes.

配置跨区域还原Configure Cross Region Restore

使用 GRS 冗余创建的保管库提供用于配置跨区域还原功能的选项。A vault created with GRS redundancy includes the option to configure the Cross Region Restore feature. 每个 GRS 保管库具有一个链接到文档的横幅。Every GRS vault will have a banner, which will link to the documentation. 若要为保管库配置 CRR,请转到“备份配置”窗格,其中包含用于启用此功能的选项。To configure CRR for the vault, go to the Backup Configuration pane, which contains the option to enable this feature.


  1. 在门户中,转到你的恢复服务保管库 >“属性”(在“设置”下)。From the portal, go to your Recovery Services vault > Properties (under Settings).

  2. 在“备份配置”下,选择“更新”。Under Backup Configuration, select Update.

  3. 选择“在此保管库中启用跨区域还原”以启用该功能。Select Enable Cross Region Restore in this vault to enable the functionality.


请参阅以下文章,了解有关通过 CRR 进行备份和还原的详细信息:See these articles for more information about backup and restore with CRR:

修改默认设置Modifying default settings

在保管库中配置备份之前,我们强烈建议检查“存储复制类型”和“安全设置”的默认设置。 We highly recommend you review the default settings for Storage Replication type and Security settings before configuring backups in the vault.

  • “存储复制类型”默认设置为“异地冗余”(GRS) 。Storage Replication type by default is set to Geo-redundant (GRS). 配置备份后,将禁用修改选项。Once you configure the backup, the option to modify is disabled.

  • “软删除”对新建的保管库默认为“已启用”,旨在防止意外或恶意删除备份数据。 Soft delete by default is Enabled on newly created vaults to protect backup data from accidental or malicious deletes. 遵循这些步骤检查和修改设置。Follow these steps to review and modify the settings.

配置备份后如何从 GRS 更改为 LRSHow to change from GRS to LRS after configuring backup

在决定从 GRS 改为本地冗余存储 (LRS) 之前,请先根据你的应用场景在较低成本和较高数据持续性之间权衡。Before deciding to move from GRS to locally redundant storage (LRS), review the trade-offs between lower cost and higher data durability that fit your scenario. 如果必须从 GRS 改用 LRS,你有两种选择。If you must move from GRS to LRS, then you have two choices. 它们取决于保留备份数据的业务要求:They depend on your business requirements to retain the backup data:

无需保留以前备份的数据Don’t need to preserve previous backed-up data

若要在新的 LRS 保管库中保护工作负载,需在 GRS 保管库中删除当前保护和数据,并重新配置备份。To protect workloads in a new LRS vault, the current protection and data will need to be deleted in the GRS vault and backups configured again.


以下操作是破坏性的,无法撤消。The following operation is destructive and can't be undone. 与受保护服务器关联的所有备份数据和备份项将被永久删除。All backup data and backup items associated with the protected server will be permanently deleted. 请谨慎操作。Proceed with caution.

停止并删除对 GRS 保管库的当前保护:Stop and delete current protection on the GRS vault:

  1. 在 GRS 保管库属性中禁用软删除。Disable soft delete in the GRS vault properties. 按照这些步骤禁用软删除。Follow these steps to disable soft delete.

  2. 停止保护并删除现有 GRS 保管库中的备份。Stop protection and delete backups from the existing GRS vault. 在保管库仪表板菜单中,选择“备份项”。In the Vault dashboard menu, select Backup Items. 此处列出的需要移动到 LRS 保管库的项必须连同其备份数据一起删除。Items listed here that need to be moved to the LRS vault must be removed along with their backup data. 请参阅如何删除云中受保护的项以及删除本地受保护的项See how to delete protected items in the cloud and delete protected items on premises.

  3. 如果计划迁移 SQL 服务器或 SAP HANA 服务器,则还需要取消注册它们。If you're planning to move SQL servers or SAP HANA servers, then you'll need also to unregister them. 在保管库仪表板菜单中,选择“备份基础结构”。In the vault dashboard menu, select Backup Infrastructure. 请参阅如何取消注册 SQL 服务器以及取消注册 SAP HANA 实例See how to unregister the SQL server, and unregister an SAP HANA instance.

  4. 将其从 GRS 保管库中删除后,请继续在新的 LRS 保管库中配置工作负载的备份。Once they're removed from the GRS vault, continue to configure the backups for your workload in the new LRS vault.

必须保留以前备份的数据Must preserve previous backed-up data

如果需要将当前受保护的数据保留在 GRS 保管库中,并在新的 LRS 保管库中继续保护,则某些工作负载的选项受到限制:If you need to keep the current protected data in the GRS vault and continue the protection in a new LRS vault, there are limited options for some of the workloads:

  • 对于 MARS,可以停止保护并保留数据并在新的 LRS 保管库中注册代理。For MARS, you can stop protection with retain data and register the agent in the new LRS vault.

    • Azure 备份服务将继续保留 GRS 保管库的所有现有恢复点。Azure Backup service will continue to retain all the existing recovery points of the GRS vault.
    • 需要付费才能将恢复点保留在 GRS 保管库中。You'll need to pay to keep the recovery points in the GRS vault.
    • 只能还原 GRS 保管库中尚未过期的恢复点的备份数据。You'll be able to restore the backed-up data only for unexpired recovery points in the GRS vault.
    • 需要在 LRS 保管库中创建数据的新初始副本。A new initial replica of the data will need to be created on the LRS vault.
  • 对于 Azure VM,可以对 GRS 保管库中的 VM 停止保护并保留数据,将该 VM 移到其他资源组,然后在 LRS 保管库中保护该 VM。For an Azure VM, you can stop protection with retain data for the VM in the GRS vault, move the VM to another resource group, and then protect the VM in the LRS vault. 请参阅将 VM 移到其他资源组的指南和限制See guidance and limitations for moving a VM to another resource group.

    同一时间只能在一个保管库中保护 VM。A VM can be protected in only one vault at a time. 但是,可以在 LRS 保管库中保护新资源组中的 VM,因为它被视为不同的 VM。However, the VM in the new resource group can be protected on the LRS vault as it's considered a different VM.

    • Azure 备份服务将在 GRS 保管库中保留已备份的恢复点。Azure Backup service will retain the recovery points that have been backed up on the GRS vault.
    • 你需要付费才能将恢复点保留在 GRS 保管库中(有关详细信息,请参阅 Azure 备份定价)。You'll need to pay to keep the recovery points in the GRS vault (see Azure Backup pricing for details).
    • 如果需要,你将能够从 GRS 保管库还原 VM。You'll be able to restore the VM, if needed, from the GRS vault.
    • LRS 保管库中对新资源组中 VM 的第一个备份将是初始副本。The first backup on the LRS vault of the VM in the new resource will be an initial replica.

后续步骤Next steps

了解恢复服务保管库。Learn about Recovery Services vaults. 了解如何删除恢复服务保管库。Learn about Delete Recovery Services vaults.