Backup and Data Protection¶
Ensure data durability and availability using layered protection features.
| Feature | Scope | Purpose |
|---|---|---|
| Soft Delete | Container/Blob | Protect against accidental deletion. |
| Versioning | Blob | Maintain history of blob changes. |
| PIT Restore | Standard GPv2, block blobs, hot/cool only | Revert blob data to a specific point in time. Not supported for HNS-enabled (Data Lake Gen2) accounts. |
| Azure Backup | Blob containers / Azure Files | Operational or vaulted backup for blob data and file shares. |
Note
Enable soft delete as a minimum protection layer for all production storage accounts.
Note: Point-in-time restore applies to Standard GPv2 accounts with block blobs in hot/cool tiers only, and is not supported for HNS-enabled (Data Lake Gen2) accounts. Azure Backup also supports Azure Files through file share snapshots in a Recovery Services vault.
mermaid graph TD A[Data Layer] --> B[Versioning] B --> C[Soft Delete] C --> D[Object Replication] D --> E[Azure Backup]
Protection Validation Checklist¶
- Enable soft delete for blobs and containers.
- Enable versioning for rollback-ready object history.
- Configure retention windows aligned to policy requirements.
- Validate restore flow in a non-production account.
- Confirm backup coverage for critical datasets.
- Monitor deletion and restore events through diagnostics.