Routine Security Tasks
Conducting routine security tasks keeps Compute Cloud@Customer safe from breaches and unauthorized access, and provides a means of recovery for unplanned data loss.
Perform the following tasks regularly:
- Take Regular Backups
- Ensure the System is Upgraded
- Monitor your Identity and Access Management (IAM) configuration and establish authentication best practices. See Securing IAM.
Take Regular Backups
The following table lists the Compute Cloud@Customer backup and restore features that you can use to ensure data durability.
| Backup and Restore Features | Links |
|---|---|
|
Compute Instances You can create backups of your instances, and use the backups to restore or create new instances. The instance backup is created in an Object Storage bucket. From there, you copy it to another server in your data center for safekeeping. When needed, you can import the backup into any Object Storage bucket, and use it to create instances. |
Backing Up and Restoring an Instance |
|
Block Volumes You can make a backup of a volume when the volume is attached to an instance or while it is detached. You can take manual or create scheduled backups. |
Backing Up Block Volumes |
|
File Storage You can create snapshots which are a consistent, point-in-time view of your file systems. You can create file system clones, which are a new file systems that are created based on a snapshot of an existing file system. |
|
|
Object Storage You can use Object versioning, which provides data protection against accidental or malicious object updates, overwrites, or deletions. You can use Object retention rules, which provide immutable storage options for data written to Object Storage for data governance, regulatory compliance, and legal hold requirements. Retention rules can also protect your data from accidental or malicious writes or deletion. Retention rules can be locked to prevent rule modification and data deletion or modification even by administrators. |
Managing Object Versioning |
Ensure the System is Upgraded
Oracle performs all Compute Cloud@Customer upgrades and patching.
You can determine when the upgrades and patches are applied using these:
- Configuring upgrade schedules. If you don't create an upgrade schedule, Oracle can upgrade Compute Cloud@Customer at any time. See Managing Upgrade Schedules.
- Enabling Oracle personnel to access the Compute Cloud@Customer infrastructure. See Oracle Operator Access Control.