Home > Data Protection > PowerProtect DD Series Appliances > Dell PowerProtect DD Series Appliances: Security > Cloud tier network security recommendations
For PowerProtect DD to verify the identity of a cloud provider before backing up data from DD series system, the cloud providers have a host certificate issued by a certificate authority (CA). Import the CA certificate and any applicable certificate revocation lists (CRLs) before backing up any data to the cloud.
For the recommended settings for securely connecting to cloud tier storage, see the Dell DDOS Security Configuration Guide.
For enhanced security, the cloud tier feature uses:
Before you can add cloud units for Alibaba Cloud, AWS S3, Microsoft Azure, Dell Elastic Cloud Storage (ECS), and Google Cloud Platform (GPC), you must import certificate authority (CA) certificates.
The PowerProtect DD appliance uses secure transport in all its communications with the public cloud providers and verifies the identity of the cloud provider. Each cloud provider has a host certificate that identifies the cloud provider and is issued by a CA.
As part of setting up the cloud tier, you must import the cloud provider's root CA certificate and any applicable certificate revocation lists (CRLs) on the system. This step must be performed before you add any cloud profiles for the cloud provider.
For information about how to download and import the CA certificate to the system, see the Dell DDOS Security Configuration Guide.