Help Center
Choose product document...
Veeam Backup & Replication 9.5 Update 4
Enterprise Manager User Guide

Restrictions for Delegated Restore

By default, users can restore all types of files from available backups. Files can be restored to two possible destinations – a restore operator can choose to download files to the local machine or restore a file directly to the original location (that is, the original machine). For security purposes, you can configure additional restrictions for restore operations – for example, narrow the list of file types that operators can restore, or prohibit operators to download restored files.

Restrictions for Delegated Restore 

To configure additional restrictions for restore operations, do the following when creating or editing user account settings:

  1. In the Allow restore of section of the Add Role or Edit Role dialog, enable the required restrictions:
  • Select the Entire virtual machines checkbox to allow the user to restore entire machines included in the user’s restore scope.
  • Select the Guest files checkbox to allow the user to restore guest OS files. The following options will then become available:
  • Allow in-place file restores only option selected will disable the Download option for users performing a file restore. With this restriction enabled, users will only be able to restore files to the original location. Restored files will be available to the accounts having access to the original machine.
  • Allow restore of files with these extensions only option allows you to define which file types can be restored by users. In the text box, enter list extensions for allowed file types, separated by commas.
  1. If this user should be able to restore Microsoft Exchange items (mail, calendars, tasks) from server backups, select the corresponding check box.
  2. You can enable the user to restore Databases by selecting the corresponding checkbox. The following options will then become available:
  • Select the Microsoft SQL Server databases checkbox to allow the user to restore Microsoft SQL Server databases included in the user’s restore scope.
  • Select the Oracle databases checkbox to allow the user to restore Oracle databases included in the user’s restore scope.
  • Deny in-place database restores (safer) option selected will prevent the user account from overriding production databases at the restore.
  1. Click OK to save the settings.
Veeam Large Logo

User Guide for VMware vSphere

User Guide for Microsoft Hyper-V

Enterprise Manager User Guide

Veeam Cloud Connect Guide

Veeam Agent Management Guide

Veeam Explorers User Guide

Backup and Restore of SQL Server Databases

Veeam Plug-ins for Enterprise Applications

PowerShell Reference

Veeam Explorers PowerShell Reference

RESTful API Reference

Required Permissions

Veeam Availability for Nutanix AHV

Veeam Backup for Microsoft Office 365 Documentation

Veeam ONE Documentation

Veeam Agent for Windows Documentation

Veeam Agent for Linux Documentation

Veeam Management Pack Documentation