IBM System Storage Ideas Portal


This portal is to open public enhancement requests against IBM System Storage products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Submitted
Workspace Storage Protect Family
Categories Spectrum Protect (Server)
Created by Guest
Created on Aug 21, 2025

RELATED IDEAS

Lock a SP client node and all its backup and archive data to prevent changes and deletions

In case of a ransom ware attack, customer immediately locks affected Storage Protect Client nodes to prevent attacked nodes from accessing the Storage Protect server. This is done to prevent changes to the Storage Protect clients backup and to prevent new, malicious backups from being inserted to the Storage Protect server.

In a next step the customer wants to preserve all Storage Protect clients data on the Storage Protect server. Preserve means, the data must not be expired or deleted in some way. Today it will only be possible to exclude the affected Storage Protect client from expiration. Nevertheless, a Storage Protect administrator will be able to expire the Storage Protect client's data manually, for example by running expiration to the affected Storage Protect client manually, specifying the Storage Protect client node name.

Customer is requesting the possibility to lock/ freeze a Storage Protect client's data which exists on the Storage Protect server. This should not be limited to archive data but include all data of a Storage Protect client.

A potential implementation could be to enhance the Storage Protect server command "lock node" by adding the option to retain/ preserve and protect all Storage Protect clients data. For example:
LOCK NODE node_affected_by_ransomware_attack PRESERVEDATA=YES
or
UPDATE NODE node_affected_by_ransomware_attack PRESERVEDATA=YES

If PRESERVEDATA=YES will be specified,

  • the Storage Protect server should not delete (expire) and change the locked node's data in any way and

  • no administrator should be allowed to delete the locked node's data unless the node will be unlocked and

  • the Storage Protect client itself should not be allowed to delete any data (PRESERVEDATA=YES implies ARCHDELETE=NO and BACKDELETE=NO for the node); if a node is locked, it cannot access the Storage Protect server anyway.

Using UPDATE NODE instead of LOCK NODE would allow to unlock a node, for example for a restore operation, and still preserve all node's data.

Idea priority High

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.