Veritas NetBackup™ Read This First Guide for Secure Communications
- NetBackup Read This First for Secure Communications
- About secure communications in NetBackup
- How host ID-based certificates are deployed during installation
- How certificates are deployed on hosts during upgrades
- How secure communication works with master server cluster nodes
- When an authorization token is required during certificate deployment
- Why do you need to map host names (or IP addresses) to host IDs
- How to reset host attributes or host communication status
- What has changed for catalog recovery
- What has changed with Auto Image Replication
- How the hosts with revoked certificates work
- How communication happens when a host cannot directly connect to the master server
- Are security certificates backed up
- How communication with legacy media servers happens in the case of cloud configuration
- How NetBackup 8.1 hosts communicate with NetBackup 8.0 and earlier hosts
- Communication failure scenarios
- Secure communication support for other hosts in NetBackup domain
When an authorization token is required during certificate deployment
The security level setting determines whether an authorization token is required to deploy a certificate. You can set the security level on the master server to different levels, depending on your needs. Use the Security Management > Global Security Settings > Secure Communication tab in the NetBackup Administration Console.
The following settings are available. The default setting is High.
- The master server fingerprint must be confirmed during certificate deployment. An authorization token is not required.
- The master server fingerprint must be confirmed during certificate deployment. An authorization token is not required if the host is known to the master server.
- The master server fingerprint must be confirmed during certificate deployment. An authorization token is required for every host.
Note:
Certificate deployment in certain scenarios always requires a token, such as in the case of clients in a demilitarized zone or for certificate reissue.
For more information on certificate deployment security levels, refer to the NetBackup Security and Encryption Guide.