About Cloud-Based Ransomware Recovery for VMware Cloud Foundation

The Cloud-Based Ransomware Recovery for VMware Cloud Foundation validated solution provides detailed design, implementation, configuration, and operation guidance on protecting business workloads running on a VMware Cloud Foundation instance against a ransomware attack by connecting the instance to VMware Cloud on AWS through the use of the VMware Live Cyber Recovery service.

A VMware by Broadcom validated solution is a well-architected and validated implementation, built and tested by VMware to help customers deliver common business use cases. VMware validated solutions are operational, cost-effective, reliable, and secure. Each solution contains a detailed design, implementation, and operational guidance.

Automation for This Design in VMware Cloud Foundation

VMware Cloud Foundation™ SDDC Manager^® automates the implementation tasks for some design decisions. For the rest of the design decisions, as noted in the design implications, you must perform the implementation steps manually.

To provide a fast and efficient path to automating the Cloud-Based Ransomware Recovery for VMware Cloud Foundation implementation, this document provides Microsoft PowerShell cmdlets as code-based alternatives to completing certain procedures in each SDDC component's user interface.

For additional information, see PowerShell Module for VMware Validated Solutions.

Intended Audience

The Cloud-Based Ransomware Recovery for VMware Cloud Foundation documentation is intended for cloud architects and administrators who are familiar with and want to use VMware software and a cloud-based ransomware recovery solution with VMware Cloud Foundation.

Support Matrix

The Cloud-Based Ransomware Recovery for VMware Cloud Foundation validated solution is compatible with certain versions of the VMware products that are used for implementing the solution.

Table 1. Software Components in Cloud-Based Ransomware Recovery for VMware Cloud Foundation
VMware Cloud Foundation Version	Product Group	Component Versions
5.2.0	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 5.2.0 Release Notes.
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery
5.1.1	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 5.1.1 Release Notes.
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery
5.1.0	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 5.1.0 Release Notes
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery

Table 2. End of General Support Software Components in Identity and Access Management for VMware Cloud Foundation
VMware Cloud Foundation Version	Product Group	Component Versions
5.0	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 5.0 Release Notes. VMware Aria Suite Lifecycle 8.10.0 (EOGS)
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery
4.5.2	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 4.5.2 Release Notes. VMware Aria Suite Lifecycle 8.10.0 (EOGS)
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery
4.5.1	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 4.5.1 Release Notes. vRealize Suite Lifecycle Manager 8.8.2 (EOGS)
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery
4.5.0	Products part of VMware Cloud Foundation	See VMware Cloud Foundation 4.5.0 Release Notes. vRealize Suite Lifecycle Manager 8.8.2 (EOGS)
	Solution-added products	VMware Cloud on AWS
	Solution-added products	VMware Live Cyber Recovery

Note:

The software component versions in this table are in End of General Support (EOGS) phase and are no longer generally supported by VMware. At the time of initial release and during the General Support phase, the software component versions in this solution are actively implemented, tested, and validated by VMware and VMware partners. See VMware Lifecycle Policies.

Before You Apply This Guidance

To design and implement the Cloud-Based Ransomware Recovery for VMware Cloud Foundation validated solution, your environment must have a certain configuration.

Table 3. Supported VMware Cloud Foundation Deployment
Workload Domain	Deployment Details
Management domain	Automated deployment using VMware Cloud Builder™. See the following VMware Cloud Foundation Documentation: For information on designing the management domain, see VMware Cloud Foundation Design Guide. For information on deploying the management domain, see Getting Started with VMware Cloud Foundation and VMware Cloud Foundation Deployment Guide. For information on operating the management domain, see VMware Cloud Foundation Administration Guide and VMware Cloud Foundation Operations Guide.
One or more virtual infrastructure workload domains	Automated deployment by using SDDC Manager See the following VMware Cloud Foundation Documentation: For information on designing a VI workload domain, see VMware Cloud Foundation Design Guide. For information on deploying the VI workload domains, see Getting Started with VMware Cloud Foundation and VMware Cloud Foundation Administration Guide. For information on operating the VI Workload domain, see VMware Cloud Foundation Operations Guide.

Overview of Cloud-Based Ransomware Recovery for VMware Cloud Foundation

By applying the Cloud-Based Ransomware for VMware Cloud Foundation validated solution, you connect a VMware Cloud Foundation instance to the VMware Live Cyber Recovery service to protect business workloads against a ransomware attack.

Table 4. Implementation Overview of Cloud-Based Ransomware Recovery for VMware Cloud Foundation
Stage	Steps
1. Plan and prepare the VMware Cloud Foundation environment.	Work with the technology team of your organization on configuring the physical servers, network, and storage in the data center. Collect the environment details and write them down in the VMware Cloud Foundation Planning and Preparation Workbook.
2. Prepare the VMware Cloud Foundation instance.	Create virtual machine and template folder.
3. Configure VMware Cloud on AWS	Deploy the recovery SDDC. Configure vCenter Server access.
4. Configure the VMware Live Cyber Recovery service.	Activate a VMware Cloud on AWS region for VMware Live Cyber Recovery. Deploy a cloud file system. Create a protected site. Deploy VMware Live Cyber Recovery Connector appliances. Create and configure a custom role in vCenter Server. Register VI workload domain vCenter Server. Add a recovery SDDC.

Update History

The Cloud-Based Ransomware Recovery for VMware Cloud Foundation validated solution is updated when necessary.


Revision	Description
23 JUL 2024	This validated solution now supports VMware Cloud Foundation 5.2.0. This validated solution now provides a single procedure for PowerShell automation. See Automated PowerShell Implementation of Cloud-Based Ransomware Recovery The PowerValidatedSolutions PowerShell module is now version 2.11.0.
28 MAY 2024	The PowerValidatedSolutions PowerShell module is now version 2.10.0.
26 MAR 2024	This validated solution now supports VMware Cloud Foundation 5.1.1. This validated solution now includes best practice guidance, see Best Practices for Cloud-Based Ransomware Recovery for VMware Cloud Foundation. The PowerValidatedSolutions PowerShell module is now version 2.9.0. The VMware.PowerCLI PowerShell module is now version 13.2.1. The following solution-added product names are changing: VMware Cloud Disaster Recovery is now VMware Live Cyber Recovery
30 JAN 2024	The PowerValidatedSolutions PowerShell module is now version 2.8.0. The following solution-added products and integrations are now deprecated: Cloud-Based Intelligent Operations with VMware Aria Operations (SaaS) Cloud-Based Intelligent Logging with VMware Aria Operations for Logs (SaaS)
07 NOV 2023	Initial release.