Regularly backing up the configuration of your Panorama management server is a critical operational task. Panorama holds the centralized policies, objects, templates, and device management settings for your entire fleet of managed firewalls. Losing the Panorama configuration without a backup could be catastrophic, requiring extensive effort to rebuild policies and configurations.
Configuration backups provide a safety net, enabling you to:
Panorama manages configurations in layers, and backups reflect this:
For recovering the Panorama management server itself, you primarily work with Running Configuration Snapshots taken on Panorama.
Panorama > Setup > Operations > Save/Load
section (or similar path depending on version).
Panorama > Scheduled Config Export
Panorama > Support
For the PCNSE exam, understand:
1. What is the primary reason for regularly backing up the Panorama configuration?
2. Which type of Panorama configuration snapshot captures the currently active configuration being used by the Panorama server?
3. What is the recommended best practice method for ensuring regular Panorama configuration backups are taken and stored securely?
4. Where in the Panorama GUI do you configure scheduled, automatic backups of the Panorama configuration to an external server?
5. Which protocol is generally preferred for Scheduled Configuration Exports due to better security?
6. What is generally NOT included in a Panorama configuration snapshot backup?
7. Why is it important to test restoring Panorama backups periodically?
8. Restoring a Panorama configuration snapshot is generally only supported onto a Panorama instance running:
9. Which action saves the current *candidate* configuration on Panorama with a custom name, without pushing to firewalls?
10. What is a potential risk of relying only on configuration snapshots saved locally on the Panorama appliance/VM?