1. Prerequisites

  • An active Azure subscription
  • A Recovery Services Vault created in your desired region
  • Proper RBAC permissions (Backup Contributor or higher)
  • Azure VM(s) running in the same region as the vault

2. Steps to Configure Azure VM Backup

Step 1: Create a Recovery Services Vault

  1. Sign in to the Azure Portal.
  2. Search for Recovery Services Vaults.
  3. Click + Add → provide Name, Subscription, Resource Group, and Region.
  4. Click Review + CreateCreate.

Step 2: Enable Backup for VM

  1. Open the Recovery Services Vault.
  2. In the left menu, select Backup.
  3. Under Where is your workload running?, choose Azure.
  4. Under What do you want to backup?, select Virtual Machine.
  5. Click Backup → select the VM(s) you want to protect.
  6. Configure a Backup Policy:
    • Daily/weekly schedule
    • Retention period (short-term and long-term)
  7. Save the policy → backup is enabled.

Step 3: Trigger Initial Backup

  1. Go to the Vault → Backup Items → Azure Virtual Machine.
  2. Select the VM → click Backup Now.
  3. Choose a Retention Date → click OK.
  4. Monitor job progress under Backup Jobs.

3. Steps to Restore Azure VM

Option A: Restore Entire VM

  1. In the Recovery Services Vault, go to Backup Items → Azure Virtual Machine.
  2. Select the VM → click Restore VM.
  3. Choose a Restore Point (snapshot).
  4. Select restore type:
    • Create new VM (recommended for testing or disaster recovery).
    • Replace existing VM (use with caution).
  5. Provide VM details (name, resource group, network).
  6. Click Restore → monitor job under Backup Jobs.

Option B: File-Level Recovery

  1. In the Vault → Backup Items → Azure Virtual Machine, select the VM.
  2. Click File Recovery.
  3. Choose a Restore Point.
  4. Download the script file provided by Azure.
  5. Run the script on your local machine → mounts the recovery point as a drive.
  6. Browse and copy required files/folders.
  7. Disconnect the mounted drive after recovery.

4. Best Practices

  • Always test restores periodically to validate backup integrity.
  • Enable Soft Delete to protect against accidental backup deletion.
  • Use Azure Monitor alerts for backup job failures.
  • Align retention policies with compliance requirements.