20 Sep 2012 ... 2012 – Data Protection Manager. Microsoft Corporation. Published: April 1, 2012.
Authors. Vinay Payyappilly. Applies To. System Center 2012 ...
Getting Started Guide for System Center 2012 – Data Protection Manager Microsoft Corporation Published: April 1, 2012
Authors Vinay Payyappilly
Applies To System Center 2012 – Data Protection Manager (DPM)
This document is provided "as-is". Information and views expressed in this document, including URL and other Internet Web site references, may change without notice. Some examples depicted herein are provided for illustration only and are fictitious. No real association or connection is intended or should be inferred. This document does not provide you with any legal rights to any intellectual property in any Microsoft product. You may copy and use this document for your internal, reference purposes. You may modify this document for your internal, reference purposes. © 2012 Microsoft Corporation. All rights reserved. Microsoft, Active Directory, Excel, Exchange Server, Hyper-V, Internet Explorer, Operations Manager, Outlook, SharePoint, Silverlight, SQL Server, Virtual Machine Manager, Windows, Windows PowerShell, Windows Server, and Windows Vista are trademarks of the Microsoft group of companies. All other trademarks are property of their respective owners.
Revision History Release Date
Changes
April 1, 2012
Original release of this guide.
September 20, 2012
Updated for System Center 2012 SP1
Contents Getting Started with System Center 2012 - Data Protection Manager ............................................ 4 Overview and roadmap for System Center 2012 - Data Protection Manager ............................. 4 What's New in System Center 2012 - Data Protection Manager ................................................. 5 System Center 2012 - Data Protection Manager Release Notes ................................................ 7 Administrator Console for System Center 2012 - Data Protection Manager ............................. 11 Administrator Console Tour .................................................................................................... 11 Using DPM Administrator Console to administer DPM .......................................................... 13 Working with task areas .......................................................................................................... 14 Product Support for System Center 2012 - Data Protection Manager ....................................... 16 Privacy Statement for System Center 2012 - Data Protection Manager ................................... 16 Privacy Statement for System Center 2012 SP1 - Data Protection Manager ........................... 20
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Getting Started with System Center 2012 Data Protection Manager This content provides quick access to important tasks required to protect and recover your data, and includes a Quick Start Guide that provides scaled down instructions for installing and configuring System Center 2012 – Data Protection Manager (DPM).
In This Section Overview and roadmap for System Center 2012 - Data Protection Manager System Center 2012 - Data Protection Manager Release Notes What's New in System Center 2012 - Data Protection Manager Administrator Console for System Center 2012 - Data Protection Manager Product Support for System Center 2012 - Data Protection Manager Privacy Statement for System Center 2012 - Data Protection Manager
Overview and roadmap for System Center 2012 Data Protection Manager System Center 2012 – Data Protection Manager (DPM) is a server-based application that enables disk-based and tape-based data protection and recovery for computers in and across Active Directory domains. DPM performs replication, synchronization, and recovery point creation to provide reliable protection and rapid recovery of data both by system administrators and by end-users. DPM is designed to be installed on servers that are running Windows Server 2008 R2 or Windows Server 2008. DPM uses replication, the Volume Shadow Copy Service (VSS) infrastructure, and a policy-driven engine to provide businesses of all sizes with nearly continuous protection and rapid, reliable data recovery. Use the following table for quick access to important tasks required to protect and recover your data. Quick Access Guide To learn about
Resource
System Requirements
To verify that the DPM server and the protected computers meet the system requirements, see 4
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] To learn about
Resource
System requirements. Known issues and late-breaking information
For solutions for any problems that you might encounter with DPM, see Release notes.
What's new
What's New.
Planning a deployment
To learn how to plan your network topology, hardware configuration, and data protection infrastructure, see Planning a deployment.
Upgrading to DPM
For information about upgrading DPM, see Upgrading to System Center 2012 DPM.
Deploying
For step-by-step instructions for deploying DPM, see Deploying DPM.
Installing
For step-by-step instructions for installing DPM, see Installing DPM.
Configuring
To start using DPM to protect data, see Configuring DPM.
Administering
For information about using the Administrator Console, see Administrator Console.
Managing
To learn about managing your installation after you install, configure, and deploy DPM, see the Operations guide.
What's New in System Center 2012 - Data Protection Manager This section introduces the new features and enhancements that are available in System Center 2012 – Data Protection Manager (DPM).
System Center 2012 Service Pack 1 (SP1) Data Protection Manager (DPM) Beta
Improved backup performance of Windows Server 2012 Hyper-V over CSV 2.0 deployments Cluster Shared Volumes (CSVs) provide a distributed file access solution so that multiple nodes in the cluster can simultaneously access the same NTFS file system. In System Center 2012 Service Pack 1 (SP1) DPM, CSV 2.0 support allows the following benefits: 5
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
90% improvement in expressful backups.
Parallel backups.
No performance difference between backups from owner and non-owner nodes.
Support for SMB shares.
For more information on deploying DPM protection for Hyper-V virtual machines, see Managing Hyper-V computers
Protect Hyper-V over remote SMB share In Windows Server 2012, you can now use SMB file shares as remote storage for Hyper-V. With this new capability, Hyper-V can store virtual machine files, which includes configuration, virtual hard disk (VHD) files, and snapshots, on SMB file shares. This offers benefits like Ease of provisioning and management, increased flexibility, ability to take advantage of existing investment in a converged network, reduced capital expenditures, and reduced operating expenditures. In System Center 2012 Service Pack 1 (SP1) DPM, SMB shares support allows the following benefits:
More efficient expressful backups.
Continued protection even after Live Migration.
Support for SMB shares in standalone and scaled-out deployments.
For more information on deploying DPM protection for Hyper-V virtual machines using SMB file shares, see Managing Hyper-V computers
DPM now allows you to exclude virtual machine pagefiles from incremental backups to improve usage of storage and improve backup performance.
Scale out support for Hyper-V virtual machines.
Protect Windows 8 deduplicated volumes Data deduplication involves finding and removing duplication within data without compromising its fidelity or integrity. DPM allows optimized back of deduplicated volumes, both locally and over the network. For more information on protecting deduplicated volumes, see Protecting deduplicated volumes
Support for Live Migration Live migration is a Hyper-V feature in Windows Server that allows you to transparently move running virtual machines from one node of the failover cluster to another node in the same cluster or another cluster without a dropped network connection or perceived downtime. In System Center 2012 Service Pack 1 (SP1) DPM, Live Migration support allows the following benefits:
Uninterrupted protection for migrated virtual machines.
Support for inter-cluster, cluster to standalone, and standalone to cluster migrations apart from intra-cluster migration.
Support for SMB shares. 6
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Integration with Windows Azure Online Backup With System Center 2012 SP1, DPM can now backup data from the DPM server to an offsite storage managed by the Windows Azure Online Backup Service. System Center customers can avail of this functionality by signing up for the Windows Azure Online Backup service. Customers will need to download and install the Windows Azure Online Backup agent on the DPM server which will be used to transfer the data between the DPM server(s) and Windows Azure Online Backup service. For more information on Windows Azure Online Backup in DPM, download the user guide.
Support for protecting SQL Server 2012 databases that use the AlwaysOn feature.
You can use a stand-alone instance of SQL Server 2012 to host the DPM database.
Support for protecting file server using Resilient File System (ReFS).
System Center 2012 Data Protection Manager (DPM)
Centralized management of multiple DPM servers.
Remote management of DPM servers.
Support for multiple DPM servers to share one instance of SQL Server for DPMDB.
Certificate-based authentication for computers in workgroups or untrusted domains.
Optimized item-level recovery for SharePoint farms.
Improved usage of tapes through protection group sets.
Support for protecting VMM hosts.
Fresh user interface.
System Center 2012 - Data Protection Manager Release Notes These release notes provide information about System Center 2012 – Data Protection Manager (DPM). We are publishing the known issues, typically included with the software as release notes, on the Web along with our other documentation so that we can continuously update issues and resolutions during the DPM product life cycle.
Release notes for System Center 2012 Service Pack 1 (SP1) Data Protection Manager (DPM) Beta General
Data Protection Manager (DPM) is available only in English.
You cannot upgrade from DPM 2010 to DPM 2012 SP1 Beta. For more information see the Upgrade Guide.
You cannot upgrade from a localized version of DPM.
7
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
You can upgrade from System Center 2012 DPM with KB2706783 to System Center 2012 SP1 DPM Beta.
When you upgrade from System Center 2012 DPM to System Center 2012 SP1, it will fail with a message that setup was unable to copy DPMDB. On the wizard screen, click Browse and browse to the location of the existing SQL instance to proceed with the upgrade.
You cannot use Storage Spaces for the DPM disk storage pool.
You can use standalone instance of SQL Server 2012 to host the DPM database if your database is not on the DPM server.
You cannot user a clustered instance of SQL Server 2012 to host a remote DPM database.
DPM does not support hosting the DPM data base on a SQL Server AlwaysOn deployment.
You must install .NET 3.5 Role on Windows Server 2012 before starting setup.
You must install .NET 3.5 on all DPM computers.
You must install .NET 3.5 on all protected computers.
You must install .NET 3.5 on computers from which you may run Central Console.
Centralized Console is not supported irrespective of whether you are using a fresh installation or upgrading from a previous version of DPM.
Support for Live Migration, Deduplication and Windows Azure Online Backup is available only on servers running Windows Server 2012.
File servers
You cannot restore encrypted files that were protected from an NTFS volume to a ReFS volume.
You cannot protect custom volumes with ReFS.
Protecting deduplicated volumes
You must enable the Data Deduplication role on the DPM server to protect deduplicated volumes.
If you protect data to tape, the data will be stored in unoptimized form.
End-user recovery for deduplicated volumes will be done in unoptimized form.
If the DPM Administrator Console stops working twice while trying the same jobs and requires to be restarted, on the third restart DPM will cancel all the running jobs. This may cause the replicas to become inconsistent. You must run consistency check to ensure all the replicas are in a good state.
Protection for deduplicated volumes is not supported for online backup to Windows Azure Online Backup.
Protecting Hyper-V machines
For Live Migration and DPM Scale-Out deployments, the DPM server, VMM server and Hyper-V hosts should be in the same domain.
All components of the virtual machine should be on one file share.
IPv4 or IPv6 address for storage location file server is not supported.
Secondary protection is not available for virtual machine mobility, scale out and deduplicated volumes. 8
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Ensure all Hyper-V hosts and virtual machines are discovered by the VMM server before you begin creating protection groups.
If you have configured page-file exclusion for your virtual machine protection and it was backed up using saved-state backup, after recovery the machine may throw boot errors when it starts up. In this scenario, the virtual machine will reboot automatically.
SQL Server 2012
Do the following to protect SQL Server 2012 database: Connect to the SQL Server 2012 instance through the Management Studio, then select and expand Security. Then select and expand Logins and right-click NT AUTHORITY\SYSTEM and select Properties. Click Serverroles, select sysadmin and click OK.
DPM does not support protecting SQL Server 2012 in a clustered deployment.
DPM cannot protect databases stored on remote SMB shares.
When protecting databases that use the AlwaysOn feature, DPM does not honor the backup policy set in SQL Server.
When protecting databases that use the AlwaysOn feature, DPM will never back up from the primary server. If you do not have a secondary server, DPM will not show you the primary server. If you have three replicas (one primary server and two secondary servers), DPM will show only the secondary servers.
When protecting databases that use the AlwaysOn feature, DPM cannot back up from an asynchronous secondary server.
When protecting databases that use the AlwaysOn feature, recovery to original location is not supported.
Disaster recovery If you have Bitlocker enabled on a volume using Resilient File System (ReFS), disaster recovery protection will fail with “Parameter incorrect” message. Windows Azure Online Backup
Case-sensitive DPM servers are not supported.
Cannot be monitored using Central Console.
Stop protection with online data retention is not supported. When you stop protection for a protection group or data source, its online data is deleted.
You cannot protect data from a secondary DPM server.
Release notes for System Center 2012 – Data Protection Manager (DPM)
Before starting your installation, you MUST read the installation instructions at Deploying DPM.
DPM supports upgrading from DPM 2010. Ensure that QFE3 [KB2581742] has been applied on all DPM servers and protected computers.
In-place upgrade from DPM Beta is supported. 9
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
DPM supports the following languages – English, French, German, Spanish, Italian, Japanese, Portuguese (Brazilian), Russian, and Chinese (Simplified).
DPM supports upgrade for DPM 2010 Chinese Traditional (Taiwan) and Korean to English only.
If DPM installation fails when trying to configure Reporting with the following error - The password is shorter than required. (The password could also be too long, be too recent in its change history, not have enough unique characters, or not meet another password policy requirement.) You have to format the computer and rerun Setup.
Do not change the installation folder for DPM to the root drive. Always install DPM inside a folder.
If the DPM icon is deleted from the desktop, you can launch DPM from C:\Program Files\Microsoft Data Protection Manager\Common\Launcher.exe.
Central Console for DPM supports only Operations Manager – System Center 2012.
Central Console is not supported on a Local Management Group (LMG) topology.
If the Operations Manager administrator has not been configured for any of the Central Console roles, they will not be able to view any jobs. To view jobs, restart Operations Manager as administrator and assign DPM tasks to the administrator user role.
After installing Operations Manager Agent on the DPM server, the following registry key settings are recommended for the data source discoveries to work properly. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Operations Manager\3.0\Modules\Global\PowerShell] "ScriptLimit"=dword:0000000f Restart the Health Service (Display name: 'System Center Management') after changing the registry settings. This must be repeated on every DPM server that you are monitoring with Operations Manager.
On scaled up environments, the following rules - Collect Event Data and Collect DPM Backup Event – must be disabled if you are not using Reporting.
Scoped Administrator Console will not work on Windows Vista (32-bit).
Scoped Administrator Console will not start until you open Operations Manager console at least once.
You cannot set end-user recovery options from the remote Administrator Console, this must be done on the DPM Administrator Console.
The time of creation of a recovery point is stored in the Operations Manager Date Warehouse in UTC time. When creating a report, you must convert the time to your time zone to get the right time. For example, if a recovery point was created at 01:00 pm 7/19/2011 on the protected computer, DPM pushes this as 1AM 7/19 to Operations Manager. Assuming the Operations Manager server is in the Pacific Time zone, this will be store as 9AM 7/19. During report creation, you must convert the time back to get the actual time.
DPM supports protection and recovery for VMM - System Center 2012 only. VMM 2008 R2 is not supported.
DPM does not support protection and recovery for SQL Server 2012 if the AlwaysOn feature is enabled. 10
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Recovery of Windows SharePoint internal items like default.aspx is not supported.
The Copy to tape option in the Recovery wizard is only available to the DPM administrator. The Recovery administrator and Tape administrator do not have permissions to use it.
If the Express Full backups for SQL Server databases are transferring large amounts of data (almost the size of the primary MDF file), you must install the update KB2471430 on the SQL Server. This typically happens after you have run DBCC CHECKDB on a Windows 2008 server.
Do not use localized characters in the machine name if you want to install DPM using remote SQL Server.
DPM database cannot be on a clustered or mirrored instance of SQL Server.
If you are upgrading to DPM from DPM 2010, you have to set up tape colocation again.
If you install a protection agent using the disconnected installation after a connected installation fails, the alerts will continue to show even through the installation is complete.
Administrator Console for System Center 2012 Data Protection Manager This section provides an overview of the System Center 2012 – Data Protection Manager (DPM) Administrator Console, including a console tour that describes the Administrator Console layout, and explains where you can find the controls for performing general tasks. It describes the five task areas of the Administrator Console, associated actions, and how you can use them to administer DPM. Note You must be a member of the local Administrators group to access the Administrator Console. The Administrator Console is the central management tool for DPM, with a consolidated interface that gives you immediate access to the Monitoring, Protection, Recovery, Reporting, and Management task areas.
In This Section Administrator Console Tour Using DPM Administrator Console to administer DPM Working with task areas
Administrator Console Tour This topic describes the layout of the Administrator Console and explains where the controls for general tasks are located.
11
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Navigation Bar The navigation bar appears to the left side of the Administrator Console. It consists of five buttons – Monitoring, Protection, Recovery, Reporting and Management. Each of these buttons takes you to the respective workspace. The workspace takes up the largest area in the console. It shows you the objects you can work with for that function. It also changes the options available on the upper half of the Navigation bar.
Workspace A workspace is a set of logically related objects. You can move from one workspace to the other using the navigation buttons. The navigation pane for some workspaces allows you to look at various aspects of the objects. For example, when you are in the Monitoring workspace, you can view alerts or jobs using the Navigation pane Following are descriptions of the type of information that appears in each pane:
Display pane. Lists items associated with the current workspace. For example, the Protection workspace displays the names of protection groups and lists the members of those groups. The display pane for some task areas is subdivided into tabs that group subsets of functionality. The navigation pane for some workspaces allows you to look at various aspects of the objects. For example, when you are in the Monitoring workspace, you can view alerts or jobs using the Navigation pane
Details pane. Provides details, such as properties and status information, for an item selected in the display pane. For example, the Details pane for the Protection task area displays status, recovery range, and other details about a selected protection group.
Tool ribbon. The tool ribbon is a dynamic group of buttons which change based on the object you have selected. Using the buttons on the tool ribbon, you can carry out actions on the selected objects.
Layout of DPM Administrator Console
12
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Menu Bar The menu bar contains four menus: File, Action, View, and Help.
File menu. Contains standard Microsoft Management Console (MMC) commands. For information about MMC, see MMC Help.
Action menu. Contains the same commands as those displayed in the tool ribbon, as well as the Help command. The Help command provides access to both DPM Help and MMC Help.
View menu. Provides an alternative method for moving between the task areas of the console, and a link to the DPM Community Web site.
Help menu. Provides access to both DPM Help and MMC Help. To access DPM Help from this menu, click Help Topics, and then click Data Protection Manager Help. The Help menu also provides version information for MMC and abridged version information for System Center 2012 – Data Protection Manager (DPM).
Using DPM Administrator Console to administer DPM To use the Administrator Console, you must be logged on to the DPM server with a domain account that is a member of the local Administrators group. Note You can also add DPM Administrator Console as a snap-in to a custom Microsoft Management Console (MMC). DPM Administrator Console is listed in the MMC Add/Remove Snap-in menu as System Center 2012 – Data Protection Manager (DPM). DPM Administrator Console runs locally on the DPM server, but you can access the console remotely by using a Remote Desktop connection. To run DPM Administrator Console on the DPM server 13
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
On the Start menu, point to All Programs, point to System Center 2012 – Data Protection Manager (DPM), and then click System Center 2012 – Data Protection Manager (DPM). -OrDouble-click the System Center 2012 – Data Protection Manager (DPM) icon on the desktop.
Working with task areas System Center 2012 – Data Protection Manager (DPM) Administrator Console contains five workspaces: Monitoring, Protection, Recovery, Reporting, and Management. The tool ribbon pane provides access to functionality associated with the current task and, in some cases, the item selected in the display pane. The following table provides details about the actions that you can perform in each workspace. Workspace
Actions
Monitoring
Use the Monitoring workspace to monitor the status of data protection, data recovery, and other DPM operations. The Monitoring workspace contains the following tabs:
Protection
Alerts—Displays errors, warnings, and informational messages. You can group alerts by protection group, computer, or severity, and you can choose to display active alerts exclusively or to display both active alerts and a history of inactive alerts. You can also subscribe to notifications to receive alerts via e-mail.
Jobs—Displays the status of jobs and their associated tasks. You can group jobs by protection group, computer, status, or type, and you can filter jobs by time period. You can choose whether to include regularly scheduled synchronization operations in the list of jobs.
Use the Protection workspace to do the following:
Create, rename, and manage members of protection groups.
Manage protection schedules, disk 14
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] Workspace
Actions
allocations, and other options.
Recovery
Reporting
Management
Run manual synchronization and consistency check jobs.
Manage recovery points.
Review and respond to results of Auto Discovery.
Use the Recovery workspace to find and recover data from recovery points. The Recovery workspace contains the following tabs:
Browse—Enables you to browse for available recovery points by protected computer.
Search—Enables you to search for available recovery points based on data type, location, origin, and recovery point date.
Use the Reporting workspace to do the following:
Generate and view reports on DPM operations.
Schedule automatic report generation.
Manage Reporting Services settings.
Use the Management workspace to manage protection agents, storage pool disks, and tape libraries. The Management workspace contains the following tabs:
Agents—Displays a list of protection agents deployed on computers and enables you to install, uninstall, and update the agents and agent licenses.
Disks—Displays a list of disks included in the storage pool and enables you to add and remove disks from the pool.
Libraries—Displays the tape libraries installed on the DPM server and enables you to manage the tapes in the library.
15
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
Product Support for System Center 2012 - Data Protection Manager Microsoft provides the following Web sites to help you learn about System Center 2012 – Data Protection Manager (DPM).
To evaluate DPM as a potential solution for your data protection needs and to review news articles about recent data protection developments, see Microsoft System Center Data Protection Manager.
For technical documentation to help you evaluate, plan, deploy, configure, operate, and troubleshoot DPM see System Center Data Protection Manager TechCenter.
For answers to questions about DPM, search for “Data Protection Manager” at Microsoft Support Knowledge Base (KB).
To find solutions to your technical problems, the latest news, key resources, and downloads and updates, or to contact a Microsoft support professional, see Microsoft Help and Support.
Communities To share your experiences with other people who are using DPM, see the System Center Data Protection Manager Community. To discuss DPM issues with other system administrators, Microsoft Most Valuable Professionals (MVPs), and Microsoft employees, search for “Data Protection Manager” at Microsoft Discussion Groups.
Privacy Statement for System Center 2012 - Data Protection Manager Microsoft is committed to protecting your privacy, while delivering software that brings you the performance, power, and convenience you desire in your personal computing. This privacy statement explains many of the data collection and use practices of System Center 2012 – Data Protection Manager (DPM). System Center 2012 – Data Protection Manager (DPM) is a server software application that enables disk and tape based data protection for servers and clients. As the standard for Windows backup and recovery, DPM offers near continuous data protection for Microsoft application and file servers using seamlessly integrated disk and tape media. DPM performs replication, synchronization, and recovery point creation to provide reliable protection and rapid recovery of data by both system administrators and end users. Collection and Use of Your Information The information we collect from you will be used by Microsoft and its controlled subsidiaries and affiliates to enable the features you are using and provide the service(s) or carry out the transaction(s) you have requested or authorized. It may also be used to analyze and improve Microsoft products and services. 16
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] We may send certain mandatory service communications such as welcome letters, billing reminders, information on technical service issues, and security announcements. Some Microsoft services may send periodic member letters that are considered part of the service. We may occasionally request your feedback, invite you to participate in surveys, or send you promotional mailings to inform you of other products or services available from Microsoft and its affiliates. In order to offer you a more consistent and personalized experience in your interactions with Microsoft, information collected through one Microsoft service may be combined with information obtained through other Microsoft services. We may also supplement the information we collect with information obtained from other companies. For example, we may use services from other companies that enable us to derive a general geographic area based on your IP address in order to customize certain services to your geographic area. Except as described in this statement, personal information you provide will not be transferred to third parties without your consent. We occasionally hire other companies to provide limited services on our behalf, such as packaging, sending and delivering purchases and other mailings, answering customer questions about products or services, processing event registration, or performing statistical analysis of our services. We will only provide those companies the personal information they need to deliver the service, and they are prohibited from using that information for any other purpose. Microsoft may access or disclose information about you, including the content of your communications, in order to: (a) comply with the law or respond to lawful requests or legal process; (b) protect the rights or property of Microsoft or our customers, including the enforcement of our agreements or policies governing your use of the services; or (c) act on a good faith belief that such access or disclosure is necessary to protect the personal safety of Microsoft employees, customers, or the public. Information that is collected by or sent to Microsoft by DPM may be stored and processed in the United States or any other country in which Microsoft or its affiliates, subsidiaries, or service providers maintain facilities. Microsoft abides by the safe harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of data from the European Union. Collection and Use of Information about Your Computer When you use software with Internet-enabled features, information about your computer ("standard computer information") is sent to the Web sites you visit and online services you use. Microsoft uses standard computer information to provide you Internet-enabled services, to help improve our products and services, and for statistical analysis. Standard computer information typically includes information such as your IP address, operating system version, browser version, and regional and language settings. In some cases, standard computer information may also include hardware ID, which indicates the device manufacturer, device name, and version. If a particular feature or service sends information to Microsoft, standard computer information will be sent as well. The privacy details for each DPM feature, software or service listed in this privacy statement describe what additional information is collected and how it is used. 17
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] Security of your information Microsoft is committed to helping protect the security of your information. We use a variety of security technologies and procedures to help protect your information from unauthorized access, use, or disclosure. For example, we store the information you provide on computer systems with limited access, which are located in controlled facilities. Changes to this privacy statement We will occasionally update this privacy statement to reflect changes in our products, services, and customer feedback. When we post changes, we will revise the "last updated" date at the top of this statement. If there are material changes to this statement or in how Microsoft will use your personal information, we will notify you either by posting a notice of such changes prior to implementing the change or by directly sending you a notification. We encourage you to periodically review this statement to be informed of how Microsoft is protecting your information. For More Information Microsoft welcomes your comments regarding this privacy statement. If you have questions about this statement or believe that we have not adhered to it, please contact us here: Microsoft Privacy Microsoft Corporation One Microsoft Way Redmond, Washington 98052 USA Or Email Us
Specific features The remainder of this document will address the following specific features:
Customer Experience Improvement Program What This Feature Does: The Customer Experience Improvement Program (“CEIP”) collects basic information about your hardware configuration and how you use our software and services in order to identify trends and usage patterns. CEIP also collects the type and number of errors you encounter, software and hardware performance, and the speed of services. We will not collect your name, address, or other contact information. Information Collected, Processed, or Transmitted: For more information about the information collected, processed, or transmitted by CEIP, see the CEIP privacy statement at http://www.microsoft.com/products/ceip/EN-US/privacypolicy.mspx. Use of Information: We use this information to improve the quality, reliability, and performance of Microsoft software and services.
18
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] To turn CEIP on or off in the DPM user interface select the “Action” menu item, then click “Opions…”. Go to the “Customer Feedback” tab and select “Yes” or “No” to turn on or off.
Microsoft Error Reporting What This Feature Does: Microsoft Error Reporting provides a service that allows you to report problems you may be having with DPM to Microsoft and to receive information that may help you avoid or solve such problems. Information Collected, Processed, or Transmitted: For information about the information collected, processed, or transmitted by Microsoft Error Reporting, see the Microsoft Error Reporting privacy statement at http://oca.microsoft.com/en/dcp20.asp. Use of Information: We use the error reporting data to solve customer problems and improve our software and services. Choice/Control: Microsoft Error Reporting for DPM is a per instance choice. With each error report instance, the user is given a choice to send or not send the information collected to Important Enterprise customers can use Group Policy to configure how Microsoft Error Reporting behaves on their computers. Configuration options include the ability to turn off Microsoft Error Reporting. If you are an administrator and wish to configure Group Policy for Microsoft Error Reporting, technical details are available at http://technet.microsoft.com/en-us/library/cc754364.aspx.
Help What This Feature Does: DPM does not include an online help function. Help files are shipped with the product, but it does have some links to KB articles.
Microsoft Update What This Feature Does: Microsoft Update is a service that provides Windows updates as well as updates for other Microsoft software. Information Collected, Processed, or Transmitted: For details about what information is collected and how it is used, see the Update Services Privacy Statement at http://update.microsoft.com/microsoftupdate/v6/privacy.aspx?ln=en-us. Use of Information: 19
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] For details about what information is collected and how it is used, see the Update Services Privacy Statement at http://update.microsoft.com/microsoftupdate/v6/privacy.aspx?ln=en-us. Choice/Control: For details about controlling this feature, see the Update Services Privacy Statement at http://update.microsoft.com/microsoftupdate/v6/privacy.aspx?ln=en-us. Microsoft Update is not enabled by default by DPM but can be enabled during the installation process by setting a checkmark by “Use Microsoft Update when I check for updates (recommended)” during the “Microsoft Update Opt-in” stage of the Setup Wizard. To disable Microsoft Update, the user will have to go to the Control Panel in Windows and disable it from there.
Privacy Statement for System Center 2012 SP1 Data Protection Manager Microsoft is committed to protecting your privacy, while delivering software that brings you the performance, power, and convenience you desire in your personal computing. This privacy statement explains many of the data collection and use practices of System Center 2012 – Data Protection Manager (DPM). System Center 2012 – Data Protection Manager (DPM) is a server software application that enables disk and tape based data protection for servers and clients. As the standard for Windows backup and recovery, DPM offers near continuous data protection for Microsoft application and file servers using seamlessly integrated disk and tape media. DPM performs replication, synchronization, and recovery point creation to provide reliable protection and rapid recovery of data by both system administrators and end users. Collection and Use of Your Information The information we collect from you will be used by Microsoft and its controlled subsidiaries and affiliates to enable the features you are using and provide the service(s) or carry out the transaction(s) you have requested or authorized. It may also be used to analyze and improve Microsoft products and services. We may send certain mandatory service communications such as welcome letters, billing reminders, information on technical service issues, and security announcements. Some Microsoft services may send periodic member letters that are considered part of the service. We may occasionally request your feedback, invite you to participate in surveys, or send you promotional mailings to inform you of other products or services available from Microsoft and its affiliates. In order to offer you a more consistent and personalized experience in your interactions with Microsoft, information collected through one Microsoft service may be combined with information obtained through other Microsoft services. We may also supplement the information we collect with information obtained from other companies. For example, we may use services from other companies that enable us to derive a general geographic area based on your IP address in order to customize certain services to your geographic area.
20
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] Except as described in this statement, personal information you provide will not be transferred to third parties without your consent. We occasionally hire other companies to provide limited services on our behalf, such as packaging, sending and delivering purchases and other mailings, answering customer questions about products or services, processing event registration, or performing statistical analysis of our services. We will only provide those companies the personal information they need to deliver the service, and they are prohibited from using that information for any other purpose. Microsoft may access or disclose information about you, including the content of your communications, in order to: (a) comply with the law or respond to lawful requests or legal process; (b) protect the rights or property of Microsoft or our customers, including the enforcement of our agreements or policies governing your use of the services; or (c) act on a good faith belief that such access or disclosure is necessary to protect the personal safety of Microsoft employees, customers, or the public. Information that is collected by or sent to Microsoft by DPM may be stored and processed in the United States or any other country in which Microsoft or its affiliates, subsidiaries, or service providers maintain facilities. Microsoft abides by the safe harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of data from the European Union. Collection and Use of Information about Your Computer When you use software with Internet-enabled features, information about your computer ("standard computer information") is sent to the Web sites you visit and online services you use. Microsoft uses standard computer information to provide you Internet-enabled services, to help improve our products and services, and for statistical analysis. Standard computer information typically includes information such as your IP address, operating system version, browser version, and regional and language settings. In some cases, standard computer information may also include hardware ID, which indicates the device manufacturer, device name, and version. If a particular feature or service sends information to Microsoft, standard computer information will be sent as well. The privacy details for each DPM feature, software or service listed in this privacy statement describe what additional information is collected and how it is used. Security of your information Microsoft is committed to helping protect the security of your information. We use a variety of security technologies and procedures to help protect your information from unauthorized access, use, or disclosure. For example, we store the information you provide on computer systems with limited access, which are located in controlled facilities. Changes to this privacy statement We will occasionally update this privacy statement to reflect changes in our products, services, and customer feedback. When we post changes, we will revise the "last updated" date at the top of this statement. If there are material changes to this statement or in how Microsoft will use your personal information, we will notify you either by posting a notice of such changes prior to 21
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] implementing the change or by directly sending you a notification. We encourage you to periodically review this statement to be informed of how Microsoft is protecting your information. For More Information Microsoft welcomes your comments regarding this privacy statement. If you have questions about this statement or believe that we have not adhered to it, please contact us here: Microsoft Privacy Microsoft Corporation One Microsoft Way Redmond, Washington 98052 USA Or Email Us
Specific features The remainder of this document will address the following specific features:
Customer Experience Improvement Program What This Feature Does: The Customer Experience Improvement Program (“CEIP”) collects basic information about your hardware configuration and how you use our software and services in order to identify trends and usage patterns. CEIP also collects the type and number of errors you encounter, software and hardware performance, and the speed of services. We will not collect your name, address, or other contact information. Information Collected, Processed, or Transmitted: For more information about the information collected, processed, or transmitted by CEIP, see the CEIP privacy statement at http://www.microsoft.com/products/ceip/EN-US/privacypolicy.mspx. Use of Information: We use this information to improve the quality, reliability, and performance of Microsoft software and services. To turn CEIP on or off in the DPM user interface select the “Action” menu item, then click “Opions…”. Go to the “Customer Feedback” tab and select “Yes” or “No” to turn on or off.
Microsoft Error Reporting What This Feature Does: Microsoft Error Reporting provides a service that allows you to report problems you may be having with DPM to Microsoft and to receive information that may help you avoid or solve such problems. Information Collected, Processed, or Transmitted:
22
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.] For information about the information collected, processed, or transmitted by Microsoft Error Reporting, see the Microsoft Error Reporting privacy statement at http://oca.microsoft.com/en/dcp20.asp. Use of Information: We use the error reporting data to solve customer problems and improve our software and services. Choice/Control: Microsoft Error Reporting for DPM is a per instance choice. With each error report instance, the user is given a choice to send or not send the information collected to Important Enterprise customers can use Group Policy to configure how Microsoft Error Reporting behaves on their computers. Configuration options include the ability to turn off Microsoft Error Reporting. If you are an administrator and wish to configure Group Policy for Microsoft Error Reporting, technical details are available at http://technet.microsoft.com/en-us/library/cc754364.aspx.
Help What This Feature Does: DPM does not include an online help function. Help files are shipped with the product, but it does have some links to KB articles.
Microsoft Update What This Feature Does: Microsoft Update is a service that provides Windows updates as well as updates for other Microsoft software. Information Collected, Processed, or Transmitted: For details about what information is collected and how it is used, see the Update Services Privacy Statement at http://update.microsoft.com/microsoftupdate/v6/privacy.aspx?ln=en-us. Use of Information: For details about what information is collected and how it is used, see the Update Services Privacy Statement at http://update.microsoft.com/microsoftupdate/v6/privacy.aspx?ln=en-us. Choice/Control: For details about controlling this feature, see the Update Services Privacy Statement at http://update.microsoft.com/microsoftupdate/v6/privacy.aspx?ln=en-us. Microsoft Update is not enabled by default by DPM but can be enabled during the installation process by setting a checkmark by “Use Microsoft Update when I check for updates (recommended)” during the “Microsoft Update Opt-in” stage of the Setup Wizard. To disable Microsoft Update, the user will have to go to the Control Panel in Windows and disable it from there. 23
[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]
24
