archive data - Bastionhost - Alibaba Cloud Documentation Center

Bastionhost lets you archive session recordings and operation logs to Object Storage Service (OSS) for data backup. This topic describes how to configure data archiving.

Usage notes

This feature is not available on Alibaba Gov Cloud or Alibaba Finance Cloud.

Archived recording files can only be played using the offline player on your computer. Importing them back into a Bastionhost instance for viewing is not supported.

When an archiving task runs, Bastionhost exports the audit data — including recording files, operation log files, and session list files — within the specified time range to OSS. OSS charges based on the amount of data exported, see Billing overview.

Prerequisites

An OSS bucket is created, and the bucket is in the same region as your Bastionhost instance. For more information, see Create a bucket.
If you are using a RAM user to configure data archiving, the RAM user must have been granted the AliyunOSSReadOnlyAccess and AliyunYundunBastionHostFullAccess policies by the Alibaba Cloud account. For more information, see Grant permissions to a RAM user.

Configure data archiving

Log on to the Bastionhost console. In the top navigation bar, select the region where your Bastionhost instance is located.
In the Bastionhost instance list, find the target instance and click Manage.
In the left navigation pane, click System Settings > Data Management.

On the Data Archive tab, configure the following parameters.

Parameter		Description
Archive Path Configuration	Bucket Region	The region of the destination bucket. By default, data is archived to the region where your Bastionhost instance is located. This setting cannot be changed.
	Select Archiving Bucket	The target bucket for archiving.
	Archiving Directory	A directory is automatically generated under the selected bucket to store archived files.
Auto-Archive Settings	Periodic Auto-Archiving	After this feature is enabled, the system automatically archives unarchived data from Bastionhost to OSS on a daily basis within the specified execution time range.
Auto-Archive Settings	Auto-Archive Time Window	The time range during which the automatic archiving task runs each day. Warning If the archiving task execution time overlaps with peak business hours, it may affect your business operations. We recommend that you schedule the execution time to avoid peak hours.
Archive Content	Session Recording	Archive session recordings.
Archive Content	Operation Logs	Archive operation logs.
Operation Log Archive Language		The language in which operation logs are archived to OSS.
Export Recordings	Select Archiving Time Range	The time range of session recordings to archive. A single task can archive recordings from up to the previous 6 months. The time range is based on session start time. Unfinished sessions are not archived.
Export Recordings	Start Time	The time to start the archiving task.

Note

Automatic archiving does not re-archive data that has already been archived. If you need to re-save archived data, use the Export Recordings feature.

What's next

Play archived recordings with the offline player

You can play archived recording files from OSS using the offline player. Follow these steps:

In the upper-right corner of the Data Management page, click Download Offline Player, and download the installation package for your operating system.
After installation, open the offline player, click Import Audit Directory, and select the folder containing the archived files downloaded from OSS.
Note
You must download the archived files from the auto-generated Archiving Directory in your OSS bucket to your local computer before importing them into the offline player.
After the import completes, a session list is automatically generated. Select a session to play the corresponding recording.