Restore disks from a backup vault

Stay organized with collections Save and categorize content based on your preferences.

Console

1. In the Google Cloud console, go to the Vaulted backups page.

   Go to Vaulted backups

   All Compute Engine instances with vaulted backups are listed here.

2. Select the backup to restore. Either from the backup details page for the backup, or from the more_vert menu for the disk:

   1. Select the disk Resource type.
   2. Select a Resource name.
   3. Browse to select the backup to restore.
   4. The Restore project name is prepopulated with the current project, but you can browse to a different project if you want to restore elsewhere.
   5. Click Restore. You can view and monitor the restore job from the Notifications bell.
   6. The restored disk appears in the Compute Engine Storage > Disks list, with the original name followed by a time and date stamp.

gcloud

1. If not already granted, grant the Backup and DR Disk Operator (roles/backupdr.DiskOperator) IAM role to the backup vault service agent in the recovery project where the VM is being recovered.

2. To get the backup vault service account, use the following command.

     gcloud backup-dr backup-vaults describe BACKUPVAULT_NAME
     --location=LOCATION
   

   Replace the following:

   • BACKUPVAULT_NAME: the backup vault name you want to restore data from.
   • LOCATION: the location of the backup vault.

3. To restore a disk, use the following commands.

   • Restore a disk in the same project as the workload project with backup ID.

       gcloud backup-dr backups restore compute test-backup-id \
       --project=PROJECT --location=LOCATION \
       --backup-vault=BACKUPVAULT_NAME --data-source=DATA_SOURCE\
       --name=NAME --target-zone=TARGET_ZONE \
       --target-project=TARGET_PROJECT
     

   • Restore a disk in the same project as the workload project with backup full resource URL.

       gcloud backup-dr backups restore compute projects/test-project-id/locations/us-central1/backupVaults/test-vault/dataSources/test-ds/backups/test-backup-id \
       --name=NAME --target-zone=TARGET_ZONE \
       --target-project=TARGET_PROJECT
     

   • Restore a VM instance with custom service-account and network configuration.

       gcloud backup-dr backups restore compute test-backup-id \
       --project=PROJECT --location=LOCATION \
       --backup-vault=BACKUPVAULT_NAME --data-source=DATA_SOURCE\
       --name=NAME --target-zone=TARGET_ZONE \
       --target-project=TARGET_PROJECT \
       --network-interface=network=NETWORK,subnet=SUBNET \
       --service-account=SERVICE_ACCOUNT \
       --scopes=SCOPE
     

     Replace the following:

     • PROJECT: the name of the backup vault project.
     • LOCATION: the location of the backup vault.
     • BACKUPVAULT_NAME: the backup vault name you want to restore data from.
     • DATA_SOURCE: the data source name you want to restore data from.
     • NAME: the name of the restored VM.
     • TARGET_ZONE: the region the VM is restored in.
     • TARGET_PROJECT: the project the VM is restored in.
     • NETWORK: the network URI of the VM.
     • SUBNET: the subnet URI of the VM.
     • SERVICE_ACCOUNT: the service account of the restored VM.
     • SCOPE: the authorization scope of the service account.

To override other VM properties, see Overview of Backup and DR Service Google Cloud CLI commands.