NetBackup™ Web UI RHV Administrator's Guide

Last Published:
Product(s): NetBackup (8.2)
  1. Introducing the NetBackup web user interface
    1.  
      About the NetBackup web user interface
    2.  
      Terminology
    3.  
      Sign in to the NetBackup web UI
  2. Managing RHV servers
    1.  
      Quick configuration checklist to protect Red Hat Virtualization virtual machines
    2. Configuring secure communication between the Red Hat Virtualization server and NetBackup host
      1.  
        ECA_TRUST_STORE_PATH for NetBackup servers and clients
      2.  
        ECA_CRL_PATH for NetBackup servers and clients
      3.  
        VIRTUALIZATION_HOSTS_SECURE_CONNECT_ENABLED for servers and clients
      4.  
        VIRTUALIZATION_CRL_CHECK for NetBackup servers and clients
    3.  
      About the ports that NetBackup uses to communicate with RHV
    4. Add or browse an RHV manager
      1.  
        Adding a backup host to the NetBackup master server
      2.  
        Remove an RHV manager
    5.  
      Create an intelligent VM group
    6.  
      Remove an intelligent VM group
    7.  
      Setting global limits on the use of RHV resources
  3. Protecting RHV virtual machines
    1.  
      Things to know before you protect RHV virtual machines
    2.  
      Protect RHV VMs or intelligent VM groups
    3.  
      Remove protection from VMs or intelligent VM groups
    4.  
      View the protection status of VMs or intelligent VM groups
  4. Recovering RHV virtual machines
    1.  
      Things to consider before you recover the RHV virtual machines
    2.  
      About the pre-recovery check
    3.  
      Recover an RHV virtual machine
    4.  
      About the supported virtual disk formats and disk provisioning during VM recovery
  5. Troubleshooting RHV VM protection and recovery
    1.  
      Troubleshooting tips for NetBackup for RHV
    2.  
      Error run into during the RHV virtual machines discovery phase
    3.  
      Error run into while backing up RHV virtual machines
    4.  
      Error run into while restoring RHV virtual machines
  6. API and command line options for RHV
    1. Using APIs and command line options to manage, protect, or recover RHV virtual machines
      1.  
        Additional information about the rename file
    2. Additional NetBackup options for RHV configuration
      1.  
        OVIRT_IMAGEIO_INACTIVITY_TIMEOUT option for NetBackup servers
      2.  
        RHV_CREATEDISK_TIMEOUT option for NetBackup servers
      3.  
        RHV_AUTODISCOVERY_INTERVAL option for NetBackup servers

Configuring secure communication between the Red Hat Virtualization server and NetBackup host

NetBackup can now validate Red Hat Virtualization server certificates using their root or intermediate certificate authority (CA) certificates.

For NetBackup 8.2, only PEM certificate format is supported for virtualization servers.

For more information, See VIRTUALIZATION_HOSTS_SECURE_CONNECT_ENABLED for servers and clients.

The following procedure is applicable for the NetBackup master server and all RHV access hosts.

To configure secure communication between Red Hat Virtualization server and RHV access host

  1. Configure a external certificate authority trust store on the RHV access host.
  2. Add CA certificates of the required Red Hat Virtualization server in the trust store on the access host.

    In case of Windows certificate store, add the CA certificate to the Windows Trusted Root Certification Authorities.

    Use the following command:

    certutil.exe -addstore -f "Root" certificate filename

  3. Use the nbsetconfig command to configure the following NetBackup configuration options on the access host:

    For more information on the configuration options, refer to the NetBackup Administrator's Guide.

    ECA_TRUST_STORE_PATH

    Specifies the file path to the certificate bundle file that contains all trusted root CA certificates.

    This option is specific to file-based certificates. You should not configure this option if Windows certificate store is used.

    If you have already configured this external CA option, append the RHV CA certificates to the existing external certificate trust store.

    If you have not configured the option, add all the required Red Hat Virtualization server CA certificates to the trust store and set the option.

    See ECA_TRUST_STORE_PATH for NetBackup servers and clients.

    ECA_CRL_PATH

    Specifies the path to the directory where the certificate revocation lists (CRL) of the external CA are located.

    If you have already configured this external CA option, append the Red Hat Virtualization server CRLs to the CRL cache.

    If you have not configured the option, add all the required CRLs to the CRL cache and then set the option.

    See ECA_CRL_PATH for NetBackup servers and clients.

    VIRTUALIZATION_HOSTS_SECURE_CONNECT_ENABLED

    This option affects Nutanix AHV, RHV, and VMware secure communication. Without this option, the secure or insurce communication with workload is decided by each workload and plug-in separately.

    For mor information, refer to the respective workload Administrator's Guide.

    For RHV, secure communication is enabled by default.

    This option lets you skip the security certificate validation.

    See VIRTUALIZATION_HOSTS_SECURE_CONNECT_ENABLED for servers and clients.

    VIRTUALIZATION_CRL_CHECK

    Lets you validate the revocation status of the virtualization server certificate against the CRLs.

    By default, the option is disabled.

    See VIRTUALIZATION_CRL_CHECK for NetBackup servers and clients.

    For more information on external CA support, refer to the NetBackup Security and Encryption Guide.