Skip to main content
Code42 Support

Code42 Platform Architectures

Applies to:
  • CrashPlan PROe

Overview

The Code42 platform provides a flexible architecture that supports a variety of deployment models to meet the needs of your enterprise. This article details the architecture options for the Code42 platform.

Definitions

The terms below are used throughout this article.

destination

(1) General term applied to locations to which your files are backed up: your server, an external drive, or with online hosted storage.
(2) Highest level in the Code42 environment storage hierarchy. A named grouping of enterprise servers and store points on a single LAN or at a single data center.

hybrid cloud

(1) Data storage within both Code42's secure public cloud and an on-premises private cloud.

(2) A type of CrashPlan PROe or SharePlan deployment in which endpoint data is stored in a combination of Code42's secure public cloud and an on-premises private cloud.

managed appliance

A server appliance that uses enterprise-grade hardware selected by Code42 and runs the Code42 enterprise server software. Managed appliances are remotely monitored and managed by Code42 and can be purchased from Code42 or a Code42-authorized agent.

Managed Private Cloud

On-premises (private cloud) deployment strategy where Code42 managed appliance(s) are utilized. The unique combination of Code42 software, hardware, and services provide customers with a predictable solution.

master server

A type of enterprise server. If you have only one server in your Code42 environment, it is a master server. The master server:

  • may store CrashPlan or SharePlan archives
  • maintains the authoritative database for licensing and authentication of all CrashPlan and SharePlan users
  • performs all new user authorization and creation; handles all business-level reporting and alerts
  • knows about all devices, users, plans and backups on all servers
  • enables web restore capabilities for CrashPlan
  • performs LDAP lookups (if enabled)
  • escrows encryption keys for devices not using a custom key
private cloud

(1) Data storage within on-premises enterprise server(s) (not in a Code42-controlled data center). Private clouds can be hosted on managed appliances or other hardware running the enterprise server software.

(2) A type of CrashPlan PROe or SharePlan deployment in which all endpoint data is stored on-premises.

public cloud

(1) Data storage within Code42's secure data centers.

(2) A type of CrashPlan PROe or SharePlan deployment in which endpoint data is stored in Code42's secure data centers.

public cloud with keys-on-premises

A specific type of public cloud deployment in which all endpoint data is stored in Code42's secure data centers, but encryption keys are stored on an on-premises master server.

Considerations

Which Code42 platform architecture is best for your organization depends on several factors:

  • Your organization's data security policies and requirements
  • Service Level Agreements (SLAs)
  • Legal or regulatory requirements affecting your data
  • CrashPlan versus SharePlan usage patterns
  • Your level of IT infrastructure and expertise

Contact sales to discuss which architecture is most suitable for your organization.

Architectures summary

The Code42 platform offers three main architecture options: public cloud, private cloud (including Managed Private Cloud deployments), and hybrid cloud deployments. Each architecture supports multiple destinations.

Architecture Data Location Encryption Key Location Hardware
Public cloud* Code42 data center(s)

Either:

Code42 public cloud
Private cloud Your data center(s) A master server in your datacenter

Either:

Hybrid cloud

Both:

  • Code42 data center(s)
  • Your data center(s)
A master server in your datacenter

Either:

  • Code42 managed appliances (Managed Private Cloud)
  • Your hardware

*To use SharePlan in the public cloud, you must use the public cloud with keys on-premises deployment model.

Public cloud

In the public cloud architecture, your data is stored at one of several secured Code42 data centers. Your data remains protected by the Code42 platform's multi-layered security protocols.

Your encryption keys can be stored either in the secure Code42 data center or in a master server in your organization's control (called public cloud with keys on premises).

Ideal For:
  • Organizations that don't want to manage their own storage
  • Global organizations lacking data centers in certain regions
Key Benefits:
  • Minimal set up required—start using the Code42 platform almost immediately
  • Unlimited—really unlimited—storage of data / file types / metadata
  • Sign in, authenticate, and restore from anywhere
  • Requires little or no infrastructure
  • Offsite data storage provides an instant disaster recovery strategy
  • Acts as an operating expense instead of capital expenditure

Public cloud with hosted keys

Public cloud architecture deployment with hosted keys

Item Description
a Client devices backing up and syncing files from the Internet
b Internet
c Code42 master server
d Code42 cloud
e
  • Web traffic (SharePlan web app, administration console, and web restores) on TCP port 443
  • Authentication traffic from the SharePlan web app, administration console on TCP port 443
f CrashPlan app and SharePlan app traffic on TCP port 443
g Client devices backing up and syncing files from on-premises
h Corporate office

Public cloud with keys on-premises

Public cloud architecture deployment with keys on-premises

Item Description
a Client devices backing up and syncing files from the Internet
b Internet
c Code42 cloud
d
  • Web traffic (SharePlan web app, administration console, and web restores) on TCP ports 4280 (HTTP) and 4285 (HTTPS)
  • Authentication traffic from the CrashPlan app and SharePlan app on TCP port 4282
    TCP port 443 can be used if port forwarding is configured.
e CrashPlan app and SharePlan app traffic on TCP port 443
f LDAP traffic on TCP ports 389 and 636
g On-premises master server
h LDAP server
i Client devices backing up and syncing files from on-premises
j Corporate office

Private cloud

In the private cloud architecture, your data and encryption keys are stored at your organization's own data center(s). Private cloud deployments offer the same industry-leading support from Code42 as public cloud deployments.

You can use Code42 managed appliances within your datacenter (called "Managed Private Cloud"), or configure your own servers with the enterprise server software.

Ideal For:
  • Organizations that need to keep their data on premises
  • Larger organizations with existing, internal data center infrastructure
Key Benefits:
  • All data and encryption keys are kept within your secure network
  • Full control of network and quality-of-service configurations, since communication stays within your secure network

Private cloud architecture deployment

Item Description
a Client devices backing up and syncing files from the Internet
b Internet
c Code42 Enterprise Cloud Management Center
d
  • Web traffic (SharePlan web app, administration console, and web restores) on TCP ports 4280 (HTTP) and 4285 (HTTPS)
  • Authentication traffic from the CrashPlan app and SharePlan app on TCP port 4282
    TCP port 443 can be used if port forwarding is configured.
e CrashPlan app and SharePlan app traffic on TCP port 4282
TCP port 443 can be used if port forwarding is configured.
f Monitoring traffic on TCP ports 10051 and 10053
g On-premises master server
h On-premises storage server
i Private cloud
j LDAP traffic on TCP ports 389 and 636
k LDAP server
l Client devices backing up and syncing files from on-premises on TCP port 4282
m Corporate office

Hybrid cloud

In the hybrid cloud architecture, your data is stored at your organization's own data center(s) and one of several secure Code42 data centers.

Your encryption keys are stored in a master server in your organization's control.

Ideal For:
  • Organizations that need the flexibility of both public and private cloud storage
  • Organizations with a disaster recovery strategy that requires both onsite and offsite data backup
  • Global organizations lacking data centers in certain regions
Key Benefits:
  • Flexibility of public cloud storage along with the full control of a private cloud configuration
  • Assured data continuity via multi-destination backup strategy
  • Offsite data storage provides an instant disaster recovery strategy
  • Easy separation of different classes of data

Hybrid cloud architecture deployment

Item Description
a Client devices backing up and syncing files from the Internet
b Internet
c Code42 cloud
d Code42 Enterprise Cloud Management Center
e
  • Web traffic (SharePlan web app, administration console, and web restores) on TCP ports 4280 (HTTP) and 4285 (HTTPS)
  • Authentication traffic from the CrashPlan app and SharePlan app on TCP port 4282
    TCP port 443 can be used if port forwarding is configured.
f

CrashPlan app and SharePlan app traffic:

  • Code42 cloud storage uses TCP port 443
  • Private cloud storage uses TCP port 4282
    TCP port 443 can be used if port forwarding is configured.
g Monitoring traffic on TCP ports 10051 and 10053
h On-premises master server
i On-premises storage server
j Private cloud
k LDAP traffic on TCP ports 389 and 636
l LDAP server
m Client devices backing up and syncing files from on-premises
n Corporate office

Hardware options

If you select an architecture that places one or more Code42 enterprise servers in your datacenter, you must choose between two hardware options: Code42 managed appliances or your own servers with the enterprise server software installed. The hardware choices vary depending on the architecture that you choose:

  • Public cloud with keys on-premises: The on-premises master server that holds the encryption keys can be a managed appliance or your own server.
    In a fully hosted public cloud deployment, the data and encryption keys are stored in the Code42 cloud so no hardware is installed in your data center.
  • Private cloud: The on-premises master server and storage servers can be managed appliances (Managed Private Cloud) or your own servers.
  • Hybrid cloud: The private cloud component can use managed appliances (Managed Private Cloud) or your own servers.

Code42 Managed appliances

Code42 managed appliances are a turnkey solution for organizations that want the benefits of the private cloud, hybrid cloud, or public cloud with keys on-premises without assuming the responsibility of architecting, installing, and managing their own servers. Managed appliances run the Code42 enterprise server software and are based on the same hardware that Code42 uses in the public cloud. A private cloud that is built with managed appliances is called a Managed Private Cloud.

Contact the Code42 sales team for details on using a Managed Private Cloud in your organization.

Ideal For:
  • Organizations that want a managed solution
  • Larger organizations with existing, internal data center infrastructure
Key Benefits:
  • Proactive management by Code42
  • Hardware and software designed and validated by Code42
  • Easy growth by adding more managed appliances
  • 24/7 monitoring and support by Code42
    Code42 administers the managed appliances but cannot decrypt stored data.

Software only Enterprise servers

You can install the Code42 enterprise server software on your own Linux, Windows, or OS X servers that meet the minimum requirements. If you choose this deployment option, you are responsible for installing, monitoring, and managing your Code42 environment.

Ideal For:
  • Organizations that want to use their own server hardware
  • Organizations that want complete control of their Code42 environment
Key Benefits:
  • Option to use existing infrastructure
  • All information about your deployment is private, even from Code42

Case studies

Case study 1: Growing startup

  • Approximate number of users: 150
  • Small office with some remote workers
  • Very little IT infrastructure or IT staff
Recommendation: Public Cloud

This is by far the easiest way to get workers backing up immediately and with very few IT staff. With a public cloud architecture, all workers can back up and restore from anywhere.

Case study 2: Advertising agency

  • Approximate number of users: 550
  • Offices in Los Angeles, Chicago and New York City
  • Serves high-profile clients
Recommendation: Private Cloud With Code42 Managed appliances (Managed Private Cloud)

It is critical to the business that its sensitive intellectual property can be shared within the organization while that information is tightly controlled and protected, especially from theft or breach. The Managed Private Cloud ensures that data is stored securely on the internal network, and the included management services support the reliability and availability of backup and file sync & share operations in each location. In this example, the IT department in New York is able to manage the agency's internal backups and synced files for all three offices.

Case study 3: Fast-moving global enterprise

  • Approximate number of users: 23,000
  • Data centers in US, Europe
  • No data center in the high-growth Asia Pacific region
Recommendation: Hybrid Cloud

While most users can share files and back up to data centers on the same continent, users in the growing Asia Pacific region cannot. Backups and especially restores from across the ocean would be painfully slow. The hybrid cloud deployment allows US and European users access to an internal data center, while Asia Pacific users can quickly and efficiently back up to Code42's regional data center.