Using Cloud Object Storage for encrypted z/OS data setsPaul Carruthers

IBM UK Ltd

5th November 2019

Session DB

Session Objectives

— Overview

— What is Cloud Tape Connector for z/OS

— What is Advanced Archive for DFSMShsm

— Easy Configuration / Usage of IBM Cloud Tape Connector for z/OS

— Easy Configuration / Usage of IBM Advanced Archive for DFSMShsm

© Copyright IBM Corporation 20192

Brief History of Storage

— IBM 727 Magnetic Tape Unit was announced on September 25, 1953.

— The IBM 3590 is a series of cartridge drives introduced in 1995.

— IBM released a Virtual Tape Server (VTS) introduced in 1997.

Modern day ….— Cloud object-storage architecture. notable examples Amazon Web Services S3, debuted in

March 2006 & Google Cloud Storage released in May 2010.

IBM announced acquisition of Cleversafe on 6th Nov, 2015, rebranded products as IBM Cloud Object Storage

© Copyright IBM Corporation 20193

IBM Advanced Storage Management Suite

4 © Copyright IBM Corporation 2019

What is Cloud Tape Connector• zIIP enabled

• Independent of mainframe storage hardware (disk, tape, virtual tape) or the supported cloud target environments ( on premise or off premise ) .

• Completely software-defined solution, no required hardware gateways.

• Support for IBM Cloud Object Storage via S3 protocol, Amazon S3, Hitachi HCP protocol, and EMC Elastic Cloud Service Protocol.

• Lifecycle Encryption Control (with Crypto Card)

• Physical / Virtual Tape Emulation

Program Number VRM Announced Available5698-ABM 02.01.00 2018/10/23 2018/11/16

5 © Copyright IBM Corporation 2019

What is Advanced Archive for DFSMShsm• zIIP enabled

• Independent of mainframe storage hardware (disk, tape, virtual tape) or the supported cloud target environments ( on premise or off premise )

• DFSMS policies are honored in the archive tier.

• Move data that was previously stored on ML2 tape under DFSMShsm control to a cloud

• Applications or users recall data stored in a cloud, returned to DFSMShsm control and made available for usage.

• Reduce HSM workload

• Program Number VRM Announced Available 5698-AAD 01.01.00 2016/09/13 2016/09/16

6 © Copyright IBM Corporation 2019

Data security – Encryption via zEnterprise Data Compression (zEDC)

7 © Copyright IBM Corporation 2019

Cloud Tape Connector Presentation Summary Cloud Tape Connector is zIIP enabled ( as is Advanced Archive for DFSMShsm )Designed to backup datasets to ‘the cloud’ instead of traditional cartridge architecture

Two types of datasets moved to the Cloud- Backup Datasets: moved at the moment of the creation, according to the criteria “Backup Filter Criteria”- History Datasets: moved during pooling interval, according to “History Datasets” criteria

“Backup Filter Criteria”, establish filtering criteria for cloud backups. Only the data sets that match the criteria will be saved to the cloud. However, it can also be used to back up data sets that are either no longer actively used or that are still in use, but have never been backed up to the cloud. These data sets are referred to as “History Datasets" data sets.

During scenario - File used for ‘test history’

USER.CTC.DEMO.SAMPLE.DUMP

During scenario - Files Dumped / Tersed to ‘backup filter’ USER.CTC.DEMO.RUNTIME.TERSE

CARRUTH.CTC.DEMO.RUNTIME.OBJECT CARRUTH.CTC.DEMO.RUNTIME.SOURCE CARRUTH.CTC.DEMO.RUNTIME.VSAM CARRUTH.CTC.DEMO.RUNTIME.VSAM.DATA CARRUTH.CTC.DEMO.RUNTIME.VSAM.INDEX

8 © Copyright IBM Corporation 2019

Parmlib sub-menu / Option 3 : Cloud Servers

9 © Copyright IBM Corporation 2019

Lite - Plan Includes• 1 COS Service Instance• Storage up to 25 GB/mo.• Up to 20,000 GET requests/mo.• Up to 2,000 PUT requests/mo.• Up to Data Retrieval 10 GB/mo.• Up to 5GB Public Outbound

main menu / Option 4. History Datasets

10 © Copyright IBM Corporation 2019

Parmlib sub-menu / Options 4 : Backup Filter Criteria

11 © Copyright IBM Corporation 2019

JES Messages at start-up

12 © Copyright IBM Corporation 2019

Standard ‘Dump’ & ‘Terse’ Job

13 © Copyright IBM Corporation 2019

Dataset Status Before & After under Cloud Tape Connector

14 © Copyright IBM Corporation 2019

Cloud Tape Connector data ‘in-sync’ with IBM Cloud Object Storage

15 © Copyright IBM Corporation 2019

Restoring under Cloud Tape Connector

16 © Copyright IBM Corporation 2019

Deleting under Cloud Tape Connector 1/2

17 © Copyright IBM Corporation 2019

Deleting under Cloud Tape Connector 2/2

18 © Copyright IBM Corporation 2019

Restoring using Cloud Tape Connector via batch

19 © Copyright IBM Corporation 2019

All events logged / Erased from IBM Cloud Object Storage

20 © Copyright IBM Corporation 2019

Advanced Archive for DFSMShsm Presentation SummaryAdvanced Archive for DFSMShsm is zIIP enabled ( as is Cloud Tape Connector )

Designed to move HSM datasets into ‘the cloud’ instead of traditional cartridge architecture

“Archive Filter Criteria”, establish filtering criteria for cloud archiving. Only the data sets that match the criteria will be ‘added’ to the cloud.

During scenario - Files to ‘archive’USER.ADVARC.DEMO.RUNTIME.OBJECT USER.ADVARC.DEMO.RUNTIME.SOURCE USER.ADVARC.DEMO.RUNTIME.VSAM USER.ADVARC.DEMO.RUNTIME.VSAM.DATA USER.ADVARC.DEMO.RUNTIME.VSAM.INDEX

21 © Copyright IBM Corporation 2019

Option 0 - Settings / option 4. Cloud Definition Settings

22 © Copyright IBM Corporation 2019

Archived file’s under Advanced Archive 1/2

23 © Copyright IBM Corporation 2019

Archived file’s under Advanced Archive 2/2

24 © Copyright IBM Corporation 2019

Advanced Archive for DFSMShsm : reporting

25 © Copyright IBM Corporation 2019

Datasets ‘saved’ in the cloud

26 © Copyright IBM Corporation 2019

Restoring Archived files under Advanced Archive 1/2

27 © Copyright IBM Corporation 2019

Restoring Archived files under Advanced Archive 2/2

28 © Copyright IBM Corporation 2019

Please submit your session feedback!

• Do it online at http://conferences.gse.org.uk/2019/feedback/DB

• This session is DB