In Veeam Backup & Replication, to utilize AWS S3 Glacier for long-term storage, the AWS S3 must first be added as a Capacity Tier within the Scale-Out Backup Repository (SOBR). This step is necessary before backups can be moved to Glacier. Once S3 is established as the Capacity Tier, the policies for moving backups to Glacier can be configured based on the retention requirements (in this case, after 90 days). This approach ensures that the monthly full backups are initially stored in S3 and then offloaded to Glacier for cost-effective long-term retention. Reference:

Veeam Documentation: Scale-Out Backup Repository

Veeam Help Center: AWS S3 as Capacity Tier and Archive Tier Configuration

To meet the requirements of setting up a Scale-Out Backup Repository (SOBR) with immutability for malware protection and specific retention policies, the most fitting configuration is D: Copy and move mode with a Performance Tier configured on a Linux Hardened Repository using the XFS file system and immutability set for 21 days, and a Capacity Tier on Amazon S3 with immutability set for 60 days. This setup utilizes the copy and move mode to ensure that backups are first stored on the on-premises Linux Hardened Repository with an immutability setting that prevents modifications to backups, providing protection against malware for the most recent 21 days of backups. As this on-premises server has limited capacity, older backups beyond 21 days are moved to the Capacity Tier in Amazon S3, where they are also protected with immutability for the entire 60-day retention period. This configuration leverages the strengths of both on-premises and cloud storage while ensuring that all backups are protected from modification or deletion by immutability, aligning with the customer's malware protection concerns and retention requirements.

The correct approach for backing up Hyper-V VMs to tape in a ransomware protection strategy is to create media pools first and then configure backup to tape jobs. This method ensures organized and efficient tape management while securing VM backups on tape media. Reference: Veeam Backup & Replication User Guide, Veeam Tape Backup Configuration Guide

Veeam Agents are designed to provide backup solutions for physical and cloud environments. They support various operating systems, including Ubuntu (a Linux-based OS) and Windows Server. These agents ensure that data on servers running these operating systems can be effectively backed up and restored. However, Veeam Agents do not support FreeBSD, IBM iSeries, or iOS as these platforms require different backup solutions or are not typically used in environments where Veeam operates. Reference:

Veeam Agents User Guide

Veeam Help Center: Supported Environments

Veeam's Secure Restore functionality is designed to provide an additional layer of security during the restore process, particularly to ensure that restored data is free from malware. The correct answer is D: Anti-virus scanning. Secure Restore integrates with antivirus software to scan the data being restored for malware, viruses, or other threats before it is brought back into the production environment. This capability is crucial in today's landscape, where data integrity and security are paramount, especially considering the increasing sophistication of cyber threats. By ensuring that restored data is scanned for threats, Veeam helps maintain the integrity and security of the IT environment, aligning with best practices for data protection and disaster recovery.