The overall steps to set up DPM protection with CBA are as follows:
- Add HTTP CRL Distribution Point.
- Create the DPM Certificate Template.
- Configure the certificate on the DPM server.
- Install the DPM agents on the protected systems.
- Configure the certificate on the protected computer.
- Attach the computer to DPM.
- Test backing up the VMs.
For the remainder of this example, we are going to protect a Hyper-V host deployed in a different forest; there is no trust relationship between the two forests. Please note that the same concept will apply to SQL Server and File Server.
The process of configuring DPM protection with certificate-based authentication is a bit long, so please make sure to follow each of the following steps carefully.