Description: The exportfdr command is an extension of the backup command which exports a full endpoint data recorder dump from the ATP database. The output is a compressed file that contains an Elasticsearch snapshot of a single index that contains the full dump. You view this data using the Elasticsearch snapshot restore API. The following is a link to the Elasticsearch website explaining perform this task:
Specify the remote storage host. Specify the IP address - not the host name.
Specify the user name for authentication with the remote machine, for example, ftp user or ssh user, depending on the chosen protocol.
Specify the password of the user for authentication with the remote machine, for example, the FTP user password or the SSH user password, depending on the chosen protocol. If SSH is chosen as the protocol and SSH public key authentication is selected, this password protects the RSA private key.
Specify a directory on the remote storage host.
Specify the protocol to transport backup data: FTP or SCP.
Specify the protocol name in lowercase characters.
Specify the port that the protocol uses. Use 21 for FTP, 22 for SCP.
Specify the local user name if SSH public key authentication is desired, as opposed to password authentication. Only applicable to SCP protocol.
Verify remote that the export mechanism works. This option transfers a test file to the remote storage with the specified options, but not with the actual export data. If the test is successful, a message with a result of 0 appears. A result other than 0 means the test failed. The test file is automatically deleted.
Subscribing will provide email updates when this Article is updated. Login is required.