NetBackup™ Web UI Security Administrator's Guide

Last Published:
Product(s): NetBackup (8.1.2)
  1. Introducing the NetBackup web user interface
    1.  
      About the NetBackup web user interface
    2.  
      Terminology
    3.  
      First-time sign in to a NetBackup master server from the NetBackup web UI
    4.  
    5.  
      The NetBackup dashboard
  2. Managing role-based access control
    1.  
      About role-based access control (RBAC) in NetBackup
    2.  
      NetBackup default RBAC roles
    3.  
      Configuring RBAC
    4.  
      Add a custom role
    5.  
      Edit or delete a custom role
    6.  
      Add an object group
    7.  
      Previewing the assets, application servers, or protection plans for an object group
    8.  
      Edit or delete an object group
    9.  
      Add access for a user through access rules
    10.  
      Edit or remove user access rules
    11.  
      How can I limit role permissions to specific objects or assets?
  3. Security events and audit logs
    1.  
      About NetBackup auditing
    2.  
      View security events and audit logs
  4. Managing host mappings and certificates
    1.  
      About security management and certificates in NetBackup
    2.  
      NetBackup host IDs and host ID-based certificates
    3.  
      View NetBackup host information
    4.  
      Approve or add mappings for a host that has multiple host names
    5.  
      Reissue a certificate when a host's certificate is no longer valid
    6.  
      Remove mappings for a host that has multiple host names
    7.  
      Reset a host's attributes
    8.  
    9.  
  5. Managing global security settings
    1.  
      Disable communication with NetBackup 8.0 and earlier hosts
    2.  
      Disable automatic mapping of NetBackup host names
    3.  
      Select a security level for certificate deployment
    4.  
      Set a passphrase for disaster recovery
  6. Troubleshooting the web UI
    1.  
      Tips for accessing the NetBackup web UI
    2.  
      If a user doesn't have the correct permissions or access to workload assets in the NetBackup web UI

To reissue a certificate, you require a reissue token in most cases. A reissue token is associated with the host ID.

Create a token

Depending on the security level, an authorization token may be required for a non-master NetBackup host to obtain a host ID-based certificate. The NetBackup administrator of the master server generates the token and shares it with the administrator of the non-master host. That administrator can then deploy the certificate without the presence of the master server administrator.

Do not create an authorization token for a NetBackup host whose current certificate is not in a valid state because it is lost, corrupt, or expired. In these cases, a reissue token must be used.

To create a token

  1. On the left, select Security > Tokens.
  2. In the upper-right corner, click Add.
  3. Enter the following information for the token:

    • Token name

    • The maximum number of times you want the token to be used

    • How long the token is valid for

  4. Click Create.
To find and copy a token value

You can view the details of the tokens that you have created and copy them for your future use.

To find and copy a token value

  1. On the left, select Security > Tokens.
  2. Select the name of the token for which you want to view the details.
  3. At the top right, click Show and then click the Copy to clipboard icon.
Cleanup tokens

Use the Cleanup tokens utility to delete tokens from the token database that are expired or that have reached the maximum number of uses allowed.

To cleanup tokens

  1. On the left, select Security > Tokens.
  2. Click Cleanup > Yes.
Delete a token

You can delete a token can be deleted before it is expired or before the Maximum Uses Allowed is reached.

To delete a token

  1. On the left, select Security > Tokens.
  2. Select the name of the tokens that you want to delete.
  3. Click Delete in the upper-right corner.