Can I backup and remove PAM session recordings from the external storage device and restore them afterwards if needed?

Document ID : KB000121216
Last Modified Date : 08/01/2019
Show Technical Document Details
Introduction:
In order to keep available disk space in the NFS device, we may think about removing the PAM Server session recordings older than a particular number of days, after backing up them to another storage device and verifying them.
Question:
Can I backup and remove PAM session recordings from the external storage device and restore them afterwards if needed?
Environment:
Any hardware or Virtual appliance running PAM server version.
Answer:
  • Yes, we can backup the session recording files and remove them from the external storage device after verifying the copy.
  • We must be aware that, as the backup and remove operation has been done from outside PAM, the records corresponding to the sessions moved out from the NFS device will still appear, as these records are stored in the PAM database.
  • If we click on one of these missing recordings, an error message stating that the recording is not available will appear in red at the top of the recorded sessions window in the PAM User Interface. This should not be a problem as they are the link to the actual file, which is not there now.
  • When any of these files be restored for some reason, the corresponding record in the PAM database will correctly point to it again, so we will be able to watch the recording as if it had been never removed.
Additional Information:
Caution: The session recording purging facility will not work in the same way, as it will remove the entries in the database for any existing file in the external storage.
See https://comm.support.ca.com/kb/why-is-pam-retaining-session-recording-entries-for-obsolete-entries-older-than-the-purge-policy-setting/kb000118691