After creating an anti-ransomware policy, you can enable, disable, edit, or delete it. This topic also describes how to manually install and uninstall the anti-ransomware agent.
Prerequisites
Before you begin, ensure that you have:
An anti-ransomware policy created for your database. For more information, see Create an anti-ransomware policy.
Policy status reference
Check the Policy Status column to understand how your policy is running:
| Status | Meaning |
|---|---|
| Successful | The policy is active and backup jobs are running as scheduled. |
| Execution failed | An error has occurred. Resolve it as soon as possible. See Troubleshoot the issues causing the abnormal status of an anti-ransomware policy for a database and backup tasks. |
Enable or disable an anti-ransomware policy
Log on to the Security Center consoleSecurity Center consoleSecurity Center consoleSecurity Center consoleSecurity Center console. In the top navigation bar, select the region where the asset resides. You can select China or Outside China.
In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.
On the Anti-ransomware for Databases tab, find the policy and toggle the switch in the Policy Status column.
To disable: Turn off the switch. > Important: After you disable the anti-ransomware policy, the data backup task that runs based on the anti-ransomware policy stops. Proceed with caution.
To enable: Turn on the switch. The anti-ransomware agent backs up your database based on the policy, protecting it against ransomware.
Edit an anti-ransomware policy
Log on to the Security Center consoleSecurity Center consoleSecurity Center consoleSecurity Center consoleSecurity Center console. In the top navigation bar, select the region where the asset resides.
In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.
On the Anti-ransomware for Databases tab, find the policy and click Edit in the Actions column.
In the Anti-ransomware Policy for Database panel, update Policy Name or Select Instance as needed.
Parameter Description Policy Name The name of the anti-ransomware policy. Select Instance Choose All Instances to protect all instances, or Specific Instances to select individual ones. For ORACLE, select instances. For MSSQL, select databases. Enter the username and password of your database account, then click Next.
Update the backup parameters as needed.
The full backup policy and incremental backup policy run independently and do not affect each other.
Parameter Description Protection Policy The anti-ransomware policy to use. Click Recommended Policy to apply Security Center's recommended settings. Full Backup Policy The interval, day of week, and start time for full backups. Full backup captures all data at a point in time. It is time-intensive and uses more backup capacity. Set the interval to 1 week for most workloads. Incremental Backup Policy The interval and start time for incremental backups. Incremental backup captures only data changed since the last full or incremental backup, using less time and capacity. Set the interval to 1 day for most workloads. Backup Data Retention Period How long backup data is retained. Maximum Backup Network Bandwidth The maximum network bandwidth during backup transfers. Set to 0 for unlimited bandwidth. Click Finished.
The anti-ransomware agent begins backing up your database based on the updated policy.
Delete an anti-ransomware policy
Deleting a policy permanently removes all associated backup data. This action cannot be undone.
Log on to the Security Center consoleSecurity Center consoleSecurity Center consoleSecurity Center consoleSecurity Center console. In the top navigation bar, select the region where the asset resides.
In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.
On the Anti-ransomware for Databases tab, find the policy and click the
icon in the Actions column.Select Delete from the drop-down list.
In the confirmation dialog, click OK.
Wait for the deletion to complete.
Manually install the anti-ransomware agent
Manually install the agent if the policy fails to initialize or if you previously uninstalled the agent from the server where the policy is applied.
Log on to the Security Center consoleSecurity Center consoleSecurity Center consoleSecurity Center consoleSecurity Center console. In the top navigation bar, select the region where the asset resides.
In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.
On the Anti-ransomware for Databases tab, find the policy and click the
icon in the Actions column.Select Install Agent from the drop-down list.
The Agent Status column changes to Installing. Installation completes in about 5 minutes.
Manually uninstall the anti-ransomware agent
If you no longer need anti-ransomware or if the agent has issues, you can manually uninstall it.
After uninstalling the agent, the policy stops backing up your database and ransomware protection is removed. Proceed with caution.
Log on to the Security Center consoleSecurity Center consoleSecurity Center consoleSecurity Center consoleSecurity Center console. In the top navigation bar, select the region where the asset resides.
In the left-side navigation pane, choose Protection Configuration > Host Protection > Anti-ransomware.
On the Anti-ransomware for Databases tab, find the policy and click the
icon in the Actions column.Select Uninstall Agent from the drop-down list.
In the confirmation dialog, click OK.
The Agent Status column changes to Uninstalling. Uninstallation completes in about 5 minutes.