Skip to main content

How can we help you?

Druva Documentation

Manage administrator accounts

This topic describes the different types of administrators and privileges, and how to manage your Druva Phoenix account.

Types of administrators

This section provides information about the types of administrators. For more information about administrators, see Key concepts and terms.

Administrator type Description

Druva Cloud Administrator

Druva Cloud Administrators have the privileges to set up and manage the Druva Phoenix account, create another cloud, organization, and group administrators. Only a Druva Cloud Administrator can manage another Druva Cloud Administrator.

To access the Phoenix Management Console as a Druva Cloud Administrator, click the Druva logo Druva_logo.png to access the Global Navigation Panel. In addition, a Druva Cloud Administrator gets all the privileges of a Phoenix Cloud Administrator.

Phoenix Cloud Administrator

Phoenix Cloud Administrators have the privileges to configure and monitor the Druva Phoenix setup and create another cloud, organization, and group administrators. Only a Phoenix Cloud Administrator can manage another Phoenix Cloud Administrator.

To access the Druva Phoenix Dashboard as a cloud administrator:

  • Click  Phoenix on the menu bar, or
  • Click All Organizations on the menu bar.

In addition, a Phoenix Cloud Administrator gets all the privileges of an organization administrator.

Organization administrator

Organization administrators can manage one or more organizations assigned to them by the cloud administrator and can create and manage group administrators for organizations assigned to them. 

Note:  Organization administrators cannot access the consolidated pages of all organizations.

To access the Organization Dashboard as an organization administrator:

  • Click the Druva Phoenix logo. If you have multiple organizations registered to your name, the first organization is displayed. Or
  • On the menu bar, select the required organization from the All Organization drop-down.

In addition, organization administrators get all the privileges available to group administrators. 

Group administrator

Group administrators have restricted access to the administrative groups with which they are associated. They have necessary permissions for administrative group-related activities such as managing servers belonging to their administrative groups. The cloud administrator and the organization administrator can change the administrative groups associated with group administrators.

One group administrator can be assigned to manage multiple administrative groups. Similarly, a single administrative group can be managed by more than one group administrator. 

Note: Group administrators will receive alert notification for only the associated administrative groups.

Create and manage the administrator account

This section provides information about how to create various administrators and manage the administrators. For more information about the administrators, see Key concepts and terms.

  • Druva recommends that you create at least two Druva Cloud Administrator within your organization. A second Druva Cloud Administrator is required to reset the password if the primary Druva Cloud Administrator forgets the password.
  • After you set your new password, ensure you keep the password secure and remember it. Druva does not have access to your data and cannot reset your account password if you forget it. Only the Druva Cloud Administrators and Phoenix Cloud Administrators can reset the password of other administrators in your organization.

Create a Druva Cloud Administrator

If Phoenix Management Console access is enabled, see Manage Druva administrators. Click the Druva logo Druva_logo.png to access the Global Navigation Panel and then click Manage Administrators to launch Manage Administrators page in the Phoenix Management Console.

Druva Cloud Administrators can perform privileged activities such as creating the Druva account, setting up login settings such as single sign-on (SSO), geofencing, and password policy. Only Druva Cloud Administrators can create other Druva Cloud Administrators. In addition, Druva Cloud Administrators get all the privileges of all other administrators. 

Procedure

  1. Log in to the Phoenix Management Console.
  2.  Click the Druva logo Druva_logo.png  > Manage Administrators to launch the Administrators page in the Phoenix Management Console.
  3. On the Administrators page, click New Administrator.
  4. On the Create New Administrator page, provide NameEmailCountryTime Zone, and select the Administrator Role as Druva Cloud Administrator
  5. After providing all the details, click Save
    Druva sends an email to the specified email address, and the recipient can log in using the details mentioned in the email. 

To go back to the Phoenix Management Console, click Druva_logo.png > Phoenix. 

Create a Phoenix Cloud Administrator 

If Phoenix Management Console access is enabled, see Manage Druva administrators

Phoenix Cloud Administrators can perform activities such as configuring, managing, and monitoring Druva Phoenix. Cloud administrators can also create other cloud, organization, and group administrators. 

Procedure

  1. Log in to the Phoenix Management Console. 
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators

    Note: You can create a cloud administrator only through All Organizations

  3. On the Administrators page, click New Administrator

CreateCloudAdmin.png

  1. On the New Administrator page, provide Display NameEmail AddressCountryTime Zone, and select the Role as Cloud Administrator
  2. Click Save

When any non-administrator with an existing subscription to alerts or reports is added as a cloud administrator, the following message is displayed:

"This email ID is already subscribed for alert(s)/report(s) as a non-administrator. Adding user as an Administrator will remove any existing non-administrator subscriptions."

Create an organization administrator

If Phoenix Management Console access is enabled, see Manage Druva administrators

Organization administrators can manage one or more organizations assigned to them by the cloud administrator. The organization administrator can create and manage the group administrators for organizations that are assigned to them. 

Note:  Only a cloud administrator can create organization administrators. Organization administrators cannot access the consolidated pages of All Organizations.

Procedure

  1. Log in to the Phoenix Management Console. 
  2. On the menu bar, from the organization's drop-down list, select All Organizations.

    Note: The All Organizations menu will be visible only if organization is enabled.  For more information, see Enable or Disable Organizations.

  3. On the menu bar, click Settings_icon.PNG > Manage Administrators
  4. On the Administrators page, click New Administrator
    CreateOrgAdmin.PNG
  5. On the New Administrator page, provide Display NameEmail AddressCountryTime Zone, and select the Role as Organization Administrator

    Note: The Organization  Administrator option will not be visible in the Role drop-down if organization is disabled.

  6. Click Save.

When any non-administrator with an existing subscription to alerts or reports is added as an organization administrator, the following message is displayed:

"This email ID is already subscribed for alert(s)/report(s) as a non-administrator. Adding user as Administrator will remove any existing non-administrator subscriptions." 

Create a group administrator

Group administrators have restricted access associated with their administrative groups. They have necessary permissions, such as managing servers belonging to their administrative groups.

If you are a cloud administrator or an organization administrator, you can create a group administrator, and assign this group administrator to multiple administrative groups. You can also assign a group administrator to administrative groups to which other group administrators are already assigned. 

Procedure

  1. Log in to the Phoenix Management Console.
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations.
  3. On the Administrators page, click New Administrator
    CreateGroupAdmin.PNG
  4. On the New Administrator page, provide Display NameEmail AddressCountryTime Zone, and select the Role as Group Administrator
  5. Click Save.

When any non-administrator with an existing subscription to alerts or reports is added as a group administrator, the following message is displayed:

"This email ID is already subscribed for alert(s)/report(s) as a non-administrator. Adding user as Administrator will remove any existing non-administrator subscriptions."

Create a data protection officer

A data protection officer (DPO) has the privilege to configure audit trails, alerts, and reports. 

  • Reporting And Alert Management: Privilege to configure audit trail and reports.
  • Backup And Restore Management: Privilege to enable and disable backup, trigger backup, restore data to the original or alternate location, and delete the cold restore points.
  • DR Management: Privilege to launch failover and disaster recovery restore.

Procedure

  1. Log in to the Phoenix Management Console. 
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations
  3. On the Administrators page, click New Administrator
    CreateDPOAdmin.PNG
  4. On the New Administrator page, provide Display NameEmail AddressCountryTime Zone, and select the Role as Data Protection Officer
  5. Click Save.

When any non-administrator with an existing subscription to alerts or reports is added as a data protection administrator, the following message is displayed:

"This email ID is already subscribed for alert(s)/report(s) as a non-administrator. Adding user as Administrator will remove any existing non-administrator subscriptions." 

Create a view-only administrator

The view-only administrators have read-only access to all configurations. However, they cannot perform any administration action on any entities on the Phoenix Management Console. Druva Phoenix provides the following view-only administrator roles. 

  • Cloud administrator (View-only): Privilege to view, download, and email all reports and audit trails for all the organizations. The administrators can also view the activities of all the organizations. However, they cannot perform any action on the entities of the Phoenix Management Console.
  • Organization administrator (View-only): Privilege to view, download, and email all reports and audit trails for the organization(s) they have access to. The administrators can also view the activities of the organizations. However, they cannot perform any action on the entities belonging to their organizations.
  • Group administrator (View-only): Privilege to view the activities of the administrative groups they are associated with. However, they cannot manage any administrative group. They can also subscribe to alerts and reports.

Procedure

  1. Log in to the Phoenix Management Console. 
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations
  3. On the Administrators page, click New Administrator
  4. On the New Administrator page, provide Display NameEmail AddressCountryTime Zone, and select one of the view-only roles from the Role drop-down list:
    1. Select the Cloud Administrator (View-only) role to create a cloud administrator with the view-only rights.
    2. Select the Organization Administrator (View-only) role to create an organization administrator with view-only rights. From the Organizations list, select the organization to be managed by the administrator. 
      Note that the Organization Administrator (View-only) role will be visible in the drop-down only if organization is enabled.
    3. Select the Group Administrator (View-only) role to create a group administrator with the view-only rights. 
  5. Click Save.

When any non-administrator with an existing subscription to alerts or reports is added as a view-only administrator, the following message is displayed:

"This email ID is already subscribed for alert(s)/report(s) as a non-administrator. Adding user as Administrator will remove any existing non-administrator subscriptions." 

Set a password policy

If Phoenix Management Console access is enabled, see Create a password policy

Only a Druva Cloud Administrator can set a password policy for all the Druva Phoenix administrator accounts. 

At the time of setting the password policy, you can choose to: 

  • Enforce a strong password.
  • Set the number of previous passwords with which your new password must not match.
  • Set the number of invalid login attempts allowed.
  • Set the number of days after which the administrator password expires.

For more information, see Enable Password Policy for Administrators.

Procedure

To enable Password Policy for administrators, perform the following steps:

  1. Click Global_nav_Panel.png to access the Global Navigation Panel > Druva Cloud Settings > Access Settings. The Access Settings window appears. 
  2. In the Password Policy section, click Edit. The Edit Password Policy window appears. 

    ConfigurePasswordPolicy1.png

    Provide the appropriate information for each field.
    Field Action

    Enable Password Policy

    If you want to enable the Password Policy for the administrators, select this checkbox. Additional fields appear.

     This field is grayed out and enabled by default for inSync GovCloud customers.

    Enforce Strong Password

    If you want to enforce a strong Password Policy, select this checkbox.

    A strong password consists of at least:

    • 12 characters
    • One upper case and one lower case letter
    • One number
    • One special character

    A strong password is hard to guess for people with malicious intent and secures the login experience.

     This field is grayed out and enabled by default for inSync GovCloud customers.

    Cannot Reset Password To Last

    Type the number of previous passwords that the administrator cannot use.

    For example, if you enter 3, then the administrators cannot set their new password to the current password and the previous two passwords.

    Note: If you disable the Password Policy at a later stage, the previous passwords history is erased permanently.

    Max Invalid Login Attempts

    Type the maximum number of login attempts.

    An administrator's account is locked after the number of invalid login attempts exceeds the number you specify here. 

    Password Expires Every Type the number of days after which the administrator must reset the password.

    Enter a value between 0 and 99 days.
  3. Click Save.

Add or remove administrative groups

If you are a cloud administrator or an organization administrator, you can add or remove administrative groups associated with group administrators. The group administrators can perform tasks such as managing servers for the newly-assigned administrative groups

Procedure

  1. Log in to the Phoenix Management Console.
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations.
    The Manage Administrative Groups page opens.
  3. To add an administrative group, click New Group, and provide the name and description for the administrative group. 
    AddAdminGroup.PNG
  4. Click Save.
  5. To remove an administrative group, select the check box next to the administrative group, and click Delete.
    DeleteAdminGroup.PNG

Update the administrator details

If Phoenix Management Console access is enabled, see Manage Druva administrators.

If you are a cloud administrator, you can update administrator details.

Procedure

  1. Log in to the Phoenix Management Console.
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations.
  3. Click the administrator for whom you want to update details.
  4. Click Edit.
    EditAdminDetails.PNG
  5. Provide the following details.
    Field Description
    Display Name The display name of the administrator.
    Country  The country where the administrator is located.
    Time Zone The time zone of the country of location. 
Note: The time zone determines the following:
  • The timestamps on the reports that the administrator receives.
  • The timestamps on the jobs that the administrator views.
  1. Click Save.

Delete an administrator account

If Phoenix Management Console access is enabled, see Manage Druva administrators

If you are a cloud administrator, you can delete other cloud administrators, organization administrators, and group administrators. If you are an organization administrator, you can delete group administrators. 

Note: Druva Phoenix does not send notifications for delete operations. You might want to consider informing the administrator whose account you deleted. 

Procedure

  1. Log in to the Phoenix Management Console.
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations
  3. Click the administrator that you want to delete, and then click Delete.

Reset an administrator password

If Phoenix Management Console access is enabled, see Manage Druva administrators

 After you set your new password, ensure you keep the password secure and remember it. Druva does not have access to your data and cannot reset your account password if you forget it. Only the Druva Cloud Administrators and Phoenix Cloud Administrators can reset the password of other administrators in your organization.

Note: If SSO is enabled, the Reset Password button and the Change Password buttons are visible only to the Druva Cloud Administrators. You cannot reset the password of other admins as only Druva Cloud Administrators are allowed a Failsafe login. Other administrators must use the SSO password to log in.

If you are a cloud administrator, you can reset passwords for other cloud administrators, organization administrators, and group administrators. If you are an organization administrator, you can reset passwords for group administrators. After you reset an administrator's password, Druva Phoenix sends an e-mail with the new password to that administrator.

Procedure

  1. Log in to the Phoenix Management Console. 
  2. On the menu bar click Settings_icon.PNG Manage Administrators. Note that if organization is enabled, then click All Organizations and then click Settings_icon.PNG Manage Administrators. For more information, see Enable or Disable Organizations.
  3. Click Reset Password.
  4. Click Yes on the confirmation message.

Administrator responsibilities

The following table lists the responsibilities of the administrators. The organization administrators can manage entities belonging only to the organizations assigned by the cloud administrators. The group administrators can manage administrative group-related activities.

The administrator responsibilities table uses the following abbreviations:

  • DCA: Druva Cloud Administrator
  • CA: Phoenix Cloud Administrator
  • OA: Organization Administrator
  • GA: Group Administrator
  • CA (view): Cloud Administrator with view-only rights
  • OA (view): Organization Administrator with view-only rights
  • GA (view): Group Administrator with view-only rights
  • DPO: Data Protection Officer
 

Responsibility

DCA

CA

OA

GA

CA

(view)

OA

(view)

GA

(view)

DPO

 

Monitor Druva Phoenix on the Dashboard page

tick.png

yes.png

Manage reports

tick.png

View audit trail

tick.png

tick.png

tick.png

tick.png

Manage audit trail

tick.png

yes.png

 

View backup policies

tick.png

Create a backup policy

tick.png

​​​​​

Modify existing backup policies

tick.png

Delete backup policies

tick.png

 

View content rule

tick.png

tick.png

Create content rule

tick.png

​​​​​​

Modify content rule

tick.png

Delete content rule

tick.png

 

Create an administrative group

tick.png

 

Register a server

tick.png

Configure a server

tick.png

Reconfigure a server

tick.png

Enable and disable a backup set

tick.png

Disable Phoenix Backup Store

tick.png

Back up and restore a server

tick.png

Delete a snapshot

tick.png

Update a backup set

tick.png


Delete a backup set

tick.png

 

Create an administrator

tick.png

Update administrator details

tick.png

Add or remove administrative groups associated with a group administrator

tick.png

Add or remove organizations associated with organization administrators

tick.png

Reset administrator password

tick.png

Delete administrators

tick.png

Set password policy

tick.png

cross.png

cross.png

cross.png

cross.png

cross.png

cross.png

Set up SSO

tick.png

cross.png

cross.png

cross.png

 

Add, install, and activate Phoenix CloudCache

tick.png

Configure Phoenix CloudCache

tick.png

 

Update Phoenix CloudCache details

tick.png

Decommission Phoenix CloudCache

tick.png

Delete Phoenix CloudCache

tick.png

Add and update CloudCache Data Volumes

tick.png

tick.png

tick.png​​

 

Creating organizations

tick.png

Access to all organizations

tick.png

View storage usage

tick.png

Disaster recovery

View a DR plan

tick.png

tick.png

tick.png

tick.png

tick.png

tick.png

Create a DR plan

tick.png

tick.png

tick.png

tick.png

Edit a DR plan

tick.png

tick.png

tick.png

tick.png

Delete a DR plan

tick.png

tick.png

tick.png

tick.png

Restore virtual machines for DR

tick.png

tick.png

tick.png

tick.png

Trigger failover

tick.png

tick.png

tick.png

tick.png

Trigger failback

tick.png

tick.png

tick.png

tick.png

Delete Phoenix AWS proxy

tick.png

tick.png

tick.png

Delete AWS account 

tick.png

tick.png

tick.png

Manage your Druva Phoenix account

This section contains instructions for updating your account details and your password.

Update your account details

This topic provides instructions for updating your account details.

Procedure 

  1. Log in to the Phoenix Management Console. 
  2. At the top-right corner of the menu bar, click   > click your username.
  3. Click Edit.
    EditAdminDetails.PNG
  4. On the Edit Administrator Details screen, provide the following details.
    Field Description
    Display Name Type a display name that you want to use. 
    Country Click the appropriate country.
    Time Zone Click the time zone that you want to use for timestamps.
    Note: The time zone determines the following:
    • The timestamps on the reports that administrator receives.
    • The timestamps on the tasks that administrator views.
  5. Click Save

Update your password

You must update your password, if:

  • Your password was reset.
  • The password policy for your Druva Phoenix setup requires you to update your password periodically.

Best practices for password updates 

We recommend that you follow the following best practices while updating your password:

  • The password should be alphanumeric. 
  • The password should not be a dictionary word.
  • The password should not contain strings of consecutive numbers or alphabets.

Procedure

  1. Log in to the Phoenix Management Console. 
  2. At the top-right corner of the menu bar, click  > click your username.
  3. Click Change Password
  4. Set a new password, and click Save.