Standalone: Getting started with Datto SaaS Protection

SECURITY  Administrator role in Datto Partner Portal and Datto SaaS Protection.

Getting up and running with Datto SaaS Protection is an easy process that will have you backing up your Google Workspace domains within an hour. To start protecting your Google Workspace environment with Datto SaaS Protection, you will:

  1. Install the Backupify app in your Google Workspace environment, described below in Installing the Backupify app from the Google Workspace Store.

  2. Log in to SaaS Protection from the Datto Partner Portal, described below in Logging in for the first time.

  3. Configure KaseyaOne Unified Login, described below in Configuring KaseyaOne Unified Login.

  4. Start running backups by adding your Google Workspace domains to SaaS Protection. A Google Workspace domain is called an organization in SaaS Protection. Steps to add an organization are covered below in Completing the self-guided onboarding.

In addition to the steps needed to start running backups, this article includes the following supplemental information:

NOTE  If you are migrating to SaaS Protection from Backupify, your existing functionality and UI will remain the same but you will have access to additional features and automations. Once you have been transitioned, you will access SaaS Protection through the Datto Partner Portal, as described below in Logging in for the first time.

The browser used to access Datto SaaS Protection must meet these requirements:

Requirement Description
Supported browsers KaseyaOne supports the following browsers:

  • Chrome

  • Safari

  • Firefox

  • Microsoft Edge
Allowlist You are required to add IP address 185.217.56.0/24 to the allowlist in the browser used to access Datto SaaS Protection.
Allow pop-ups To ensure the smooth operation and correct functionality, it is recommended that you enable pop-ups in your browser. To learn more about how to manage pop-up blockers, follow the link for your browser below:

IMPORTANT  You must install the Backupify app to before you can add the organizations you will protect with SaaS Protection.

Use this procedure to install the Backupify app:

  1. Open a private browser tab (e.g., a Google Incognito tab or a Microsoft Edge InPrivate tab).

  2. Log in to Google Workspace as a super admin user (only super admins are able to install the Backupify app).

  3. Click Admin Console.

  4. From the Google Workspace Admin Console, select Apps > Google Workspace Marketplace apps > Apps list.

  5. In the upper-right corner, click Install App.

  6. Search for Backupify for Google Workspace. In the results, select the app.

  7. Click Admin Install.

  8. In the Admin Install dialog, click Continue.

  9. In the Allow Data Access dialog, leave Everyone at your organization selected. Check the Terms of Service agreement box. Click Finish.

  10. Click Next, then click Done.

  11. When finished, the Backupify for Google Workspace app displays in Google Workspace Marketplace as ON in the Domain Installed Apps list. (If you do not see the app in the list, reload the page to refresh the display.)

Datta SaaS Protection is located within the Datto Partner Portal. The process used to log in to SaaS Protection for the first time varies by whether you are already using Datto Partner Portal to access other Kaseya modules or are new to Datto Partner Portal. See these procedures for details:

NOTE  This procedure assumes that you have received a Welcome to Datto Partner Portal email. If not, reach out to your account manager.

  1. In your Welcome to Datto Partner Portal email, click Finish configuring your account.

  2. On the Set Your Password page, enter a new password for your Datto Partner Portal account.

  3. The Datto Portal login page opens. Log in using the username provided in your Welcome to Datto Partner Portal email and the new password you just set.
  4. The Datto Partner Portal Terms of Service display. Read the terms of service. Check the I Agree... box. Click Continue.
  5. On the Select Authentication Method page, configure two-factor authentication (2FA) for Datto Partner Portal. Enter the verification code and click Enable 2FA.
  6. If the Your Available Tenants page displays, locate your tenant and click Continue. (This page displays only if you have multiple tenants.)
  7. The Partner Portal Home page displays. Click Manage under Datto SaaS Protection.

  8. You are logged in to SaaS Protection and the SaaS Protection Status page displays.

NOTE  If you have migrated from Backupify, select your organization on the SaaS Protection Status page to view the organization's Overview page. (This Overview page is the home page that displayed when you logged in to Backupify.)

Next step: Configuring KaseyaOne Unified Login.

  1. Log in to Datto Partner Portal as an administrator.
  2. On the Your Available Tenants page, locate the Datto Portal and click Continue.
  3. If you are managing multiple Datto Portal tenants in your environment, locate your tenant on the Your Available Tenants page and click Continue.
  4. The Partner Portal Home page displays. Click Manage under Datto SaaS Protection.

  5. You are logged in to SaaS Protection and the SaaS Protection Status page displays.

NOTE  If you have migrated from Backupify, select your organization on the SaaS Protection Status page to view the organization's Overview page. (This Overview page is the home page that displayed when you logged in to Backupify.)

Next step: Configuring KaseyaOne Unified Login.

KaseyaOne Unified Login connects your Kaseya modules with KaseyaOne so that you can log in once - to KaseyaOne - and access all of your Kaseya modules. Datto SaaS Protection is managed through the Datto Partner Portal and does not have direct single sign-on (SSO) integration with KaseyaOne, but it is recommended that you enable Unified Login for Datto Partner Portal.

After you enable Unified Login in the Datto Partner Portal, you can access SaaS Protection from KaseyaOne by launching SSO to Datto Partner Portal and clicking the Datto SaaS Protection Manage link on the Partner Portal Home page.

To enable Log In with KaseyaOne for Datto Partner Portal, do the following:

  1. Log in to the Datto Partner Portal and navigate to Admin > Security Settings.

NOTE  You must be assigned the Security Admin role to see and access the Security Settings menu. Contact your Datto Partner Portal administrator for assistance if you do not have the Security Admin role. For additional information, refer to this Datto Partner Portal article: Assign a Security Admin.

  1. Go to the Single Sign-on (SSO) section of the page that opens and click Enable Login With KaseyaOne.

  2. The KaseyaOne login page opens prompting you to log in. Enter your KaseyaOne credentials and then the verification code to enable Log In with KaseyaOne.

Unified Login on for Datto Partner Portal is now enabled. Users will automatically gain access to Datto Partner Portal through Log In with KaseyaOne, and Datto Partner Portal will display in the My Modules list in KaseyaOne.

For more information, refer to this Datto Partner Portal article: KaseyaOne integration with Datto Partner Portal.

Next step: Completing the self-guided onboarding.

To start protecting your Google Workspace domains, follow the self-guided onboarding tour to add the organizations to protect.

Self-guided onboarding launches automatically the first time you log in to SaaS Protection as an administrator. You can also access it at any time by clicking the graduation cap icon, as shown here:

NOTES   

Adding an organization involves the following steps:

  1. Adding the name and core details.

  2. Selecting the commitment term and retention model for the organization.

  3. Selecting whether you or your organization will manage the SaaS Protection account.

  4. Deciding whether to automatically protect new users and enable a user license cap to prevent the organization from consuming too many SaaS Protection licenses.

Refer to Adding a new Datto SaaS Protection organization for complete details.

You will manage your SaaS Protection environment on the SaaS Protection Status page:

The SaaS Protection Status page allows you to do the following:

  • View charts to monitor vital statistics regarding all your SaaS Protection accounts.

  • Add and remove organizations

  • Review your total license usage for each subscription type and license usage for each organization.

  • View Graphus organizations and be redirected to Graphus to analyze the threats.

Refer to Exploring the SaaS Protection Status page for complete details.

Depending on the other IT Complete modules active in your stack, you can take advantage of the following integrations to improve security and overall operations: