Creating a DPM Role
Applies To: System Center Data Protection Manager 2010
System Center Data Protection Manager (DPM) 2010 includes the DPM Self-Service Recovery Configuration Tool for SQL Server (SSRCT). You can use this tool to create DPM roles, which enable SQL Server database owners to recover their databases without the need for intervention by a DPM administrator. You can configure a DPM role to control which protected databases users can recover and to which instances of SQL Server users can recover databases. Users can recover a database by using the DPM Self-Service Recovery Tool (SSRT) for SQL Server. For more information about the SSRT, see DPM 2010 Self-Service Recovery Tool.
You can also use cmdlets in DPM Management Shell to create DPM roles.
To create a DPM role, you must specify the following settings:
Security groups: One or more security groups that contain the users for whom you want to enable self-service recovery of SQL Server databases.
Recovery items: Instances of SQL Server and SQL Server databases that are currently protected by DPM for which you want to enable self-service recovery by users.
Recovery targets: Instances of SQL Server that users can use as targeted locations to recover databases during self-service recovery.
To create a DPM role by using the DPM Self-Service Recovery Configuration Tool
In DPM Administrator Console, click the Protection tab, and then, in the Actions pane, click Configure self service recovery for SQL Server.
The DPM Self-Service Recovery Configuration Tool for SQL Server opens.
To create a new DPM role, click Create Role.
The Create New Role Wizard opens and guides you through the following pages to create a DPM role:
To create a DPM role by using DPM Management Shell cmdlets
Create a DPM role.
Important
To create a DPM role, all of the following commands must be run in the following order.
New-DPMRole -Name <NewDMPRoleName> -DPMServerName <DPMServerName> [-Description <DPMRoleDescription>] [<CommonParameters>]Specify the individual users or security groups that contain the users for whom you want to enable self-service recovery of SQL Server databases.
Add-DPMSecurityGroup -SecurityGroups <SecurityGroupsToAddToDPMRole> -DpmRole <DPMRoleName> [<CommonParameters>]Note
Specified users can recover their SQL Server databases regardless of the database permissions configured on the instances of SQL Server.
Specify the instances of SQL Server and SQL Server databases that are currently protected by DPM for which you want to enable self-service recovery by users.
Add-DPMRecoveryItem -Datasources <SQLServerDatabaseName> -Type SQLDatabase -DpmRole <DPMRoleName> [<CommonParameters>]-Or-
Add-DPMRecoveryItem -SQLInstances <SQLDataSource> -Type SQLInstance -DpmRole <DPMRole> [<CommonParameters>]Identify and add the instances of SQL Server that users can use as targeted locations to recover databases during self-service recovery.
Create a recovery target object.
New-DPMRecoveryTarget -Type SQLInstance or SQLDatabase -RecoveryTarget <ComputerName\InstanceName> -RecoveredFilesPath <FilePath> [<CommonParameters>]Add the recovery target object to the role.
Add-DPMRecoveryTarget -DpmRole <DMPRoleName> -RecoveryTargets <TargetRecoveryTargetName> [<CommonParameters>]
Save the new DPM role.
Set-DPMRole -DpmRole <DMPRoleName> -Confirm [<CommonParameters>]