Cohesity and Nutanix Integration for NKP Data Protection

Overview

As organizations adopt Kubernetes to run stateful, production-grade applications, traditional VM backup tools fall dangerously short. They cannot capture the full application context of a containerized workload i.e. Kubernetes environment configuration, persistent storage, and application state are left exposed — invisible to VM backup tools and unprotected against the ransomware, corruption, or cluster failure that could strike at any time. Meanwhile, managing separate tools for VMs, files, databases, and containers fragments visibility, inflates operational overhead, and creates the kind of blind spots attackers exploit.

Cohesity and Nutanix deliver a tightly integrated, enterprise-grade data protection solution for the Nutanix Kubernetes Platform (NKP). By combining Cohesity Data Cloud with NKP’s native Kubernetes capabilities, organizations can protect containerized workloads with policy-driven, scalable, and cyber‑resilient backup and recovery without the operational complexity.

The Solution

Cohesity integrates natively with Nutanix NKP using open, Kubernetes-native standards. Velero protects Kubernetes object metadata. Cohesity Datamover uses CSI snapshots to protect persistent volume data. Together, they deliver complete application-context protection from a single platform, the same Cohesity Data Cloud that protects your AHV VMs, Nutanix Files, and NDB databases.

Key Benefits

Kubernetes-native architecture using open standards (Velero + CSI)—no proprietary agents inside application pods.
One platform protects all Nutanix workloads: VMs, Files, NDB, NKP, and NC2.
Immutable backups with DataLock and optional FortKnox air-gapped vault deliver ransomware-resilient protection.
Unified Helios UI and global actionable search across all workloads and locations.

Key Capabilities

Forever-incremental CSI backups

CSI-based snapshots capture only changed data after the first full backup, minimizing storage footprint and backup windows.

Granular protection at every level

Recover an entire namespace, individual PVCs, or specific files and folders from within a PVC—to the same cluster or a different one.

Label-based auto-protect

Protection policies follow Kubernetes labels automatically. Tag a namespace as tier=production and it is protected—no manual intervention required.

Cross-cluster recovery with storage class remapping

Restore applications to a different cluster and remap PVCs to a new storage class on the target—enabling true application portability.

Application-consistent backups

Pre- and post-exec scripts quiesce stateful and transactional workloads before snapshot, ensuring clean, usable recovery points.

Include/exclude resources during backup and recovery

Granular PVC inclusion and exclusion at protection group or namespace level with custom Kubernetes resource filtering. Can include/exclude K8s resources at the granular level like secrets, Config Maps, CRDs etc .

How It Works	Use Cases	Why Cohesity
Register: Provide the NKP cluster API endpoint and Bearer token. Cohesity deploys Velero and Datamover pods into the cluster automatically. Protect: Create a protection policy for namespaces. Label-based rules auto-enroll matching namespaces as they are created. Back up: Velero captures Kubernetes metadata. CSI snapshots capture PVCs. Datamover streams data to Cohesity via gRPC. Recover: Choose namespace, PVC, or file-level recovery. Restore to the original cluster or cross-cluster with storage class remapping.	Enterprise Kubernetes backup and DR Ransomware-resilient container protection Application-consistent stateful workload backup Cross-cluster app migration and portability Secure hybrid and NC2 cloud K8s operations Unified protection across the full Nutanix portfolio	Efficient Data Protection Forever-incremental, CSI-based backups reduce storage and operational overhead One Platform. Unified Cohesity UI with centralized visibility and control Cyber Resilience Immutable backups, data isolation, and clean recovery paths Co-engineered. Cohesity is Nutanix ready certified. Built alongside Nutanix to accelerate IT modernization without compromising security or recoverability.

How It Works

Use Cases

Why Cohesity

Register: Provide the NKP cluster API endpoint and Bearer token. Cohesity deploys Velero and Datamover pods into the cluster automatically.
Protect: Create a protection policy for namespaces. Label-based rules auto-enroll matching namespaces as they are created.
Back up: Velero captures Kubernetes metadata. CSI snapshots capture PVCs. Datamover streams data to Cohesity via gRPC.
Recover: Choose namespace, PVC, or file-level recovery. Restore to the original cluster or cross-cluster with storage class remapping.

Enterprise Kubernetes backup and DR
Ransomware-resilient container protection
Application-consistent stateful workload backup
Cross-cluster app migration and portability
Secure hybrid and NC2 cloud K8s operations
Unified protection across the full Nutanix portfolio

Efficient Data Protection
Forever-incremental, CSI-based backups reduce storage and operational overhead

One Platform.
Unified Cohesity UI with centralized visibility and control

Cyber Resilience
Immutable backups, data isolation, and clean recovery paths

Co-engineered.
Cohesity is Nutanix ready certified. Built alongside Nutanix to accelerate IT modernization without compromising security or recoverability.

Cohesity Data Cloud

Cohesity for Midsize Business

Data Cloud packaging

Certified platforms

Backup & Recovery

Cloud Data Protection

Cloud App Recovery

SaaS Data Protection

Unstructured Data Protection

Cyber Resilience

Zero Trust Security

Archive & Long-Term Retention

Disaster Recovery

Identity Resilience

Ransomware Anomaly Detection

Threat Protection

Data Security Posture Management

Data Classification

Cyber Vaulting

Cyber Recovery Orchestration

Digital Jump Bag

Clean Room Solution

AI Conversational Search

Reporting & IT Insights

Global Search

Why Cohesity

Cohesity vs. Rubrik

Cohesity vs. Commvault

View all solutions

Learn more

Microsoft 365 Protection

AWS

Azure

Google Cloud

Google Workspace

Slack

Active Directory & Entra ID

Hyper-V

Kubernetes

IBM

MongoDB

MS SQL Server

NAS

NoSQL & Hadoop

Nutanix

Oracle

Red Hat

SAP HANA

VMware

Minimum Viable Company

Financial services

Healthcare and life sciences

Manufacturing and logistics

Federal government

State, local government, and education

Retail and hospitality

Legal

Energy and utilities

Telecom

Technology

Media and entertainment

View all

Corporate Overview

Blogs

Demos

Events and Webinars

Customer Stories

Glossary

Marketplace

Podcast

Support

Support login

How-to videos

Cyber Event Response Team

Professional Services

Cohesity Community

Cohesity Academy

Trust Center

Cohesity REDLab

Channel Partners