Veritas NetBackup™ Read This First Guide for Secure Communications
- NetBackup Read This First for Secure Communications
- About secure communications in NetBackup
- How host ID-based certificates are deployed during installation
- How certificates are deployed on hosts during upgrades
- How secure communication works with master server cluster nodes
- When an authorization token is required during certificate deployment
- Why do you need to map host names (or IP addresses) to host IDs
- How to reset host attributes or host communication status
- What has changed for catalog recovery
- What has changed with Auto Image Replication
- How the hosts with revoked certificates work
- How communication happens when a host cannot directly connect to the master server
- Are security certificates backed up
- How communication with legacy media servers happens in the case of cloud configuration
- How NetBackup 8.1 hosts communicate with NetBackup 8.0 and earlier hosts
- Communication failure scenarios
- Secure communication support for other hosts in NetBackup domain
How NetBackup 8.1 hosts communicate with NetBackup 8.0 and earlier hosts
NetBackup 8.1 hosts can communicate with other 8.1 hosts only in a secure mode. For a 8.1 host to communicate with hosts at 8.0 or earlier, or for a 8.1 master server to communicate with OpsCenter 8.1, you need to allow insecure communication.
By default, the Enable insecure communication with NetBackup 8.0 and earlier hosts option is enabled. The option is available in the NetBackup Administration Consoleon the Security Management > Global Security Settings > Secure Communication tab.
If you disable the option to allow only secure communication, you must restart the NetBackup services on the master server to terminate any insecure communications and allow only secure communications.
During insecure communication, the NetBackup 8.1 host first connects to the master server for host validation. The master server verifies whether insecure communication is enabled or not. If the option is enabled, the communication between the two hosts is established. If the option is disabled, the communication is dropped.