NetBackup™ Web UI Security Administrator's Guide
- Introducing the NetBackup web user interface
- Managing role-based access control
- Steps to create an object group
- Adding AD or LDAP domains
- Security events and audit logs
- Managing hosts
- Managing security certificates
- Managing NetBackup security certificates
- Using external security certificates with NetBackup
- Managing user sessions
- Managing master server security settings
- Creating and using API keys
- Configuring smart card authentication
- Troubleshooting access to the web UI
- Unable to add AD or LDAP domains with the vssat command
To configure role-based access control for the NetBackup web UI, perform the following steps.
Configure any Active Directory or LDAP domains.
Before you can add domain users, Active Directory or LDAP domains must be authenticated with NetBackup.
Use the vssat command to configure the domains in your environment.
Review the RBAC roles.
NetBackup has three default roles: system administrator, backup administrator, and workload administrator. Review the permissions for these roles to determine which role or roles are appropriate for your users.
If it is needed, you can create a custom role with a custom set of permissions.
See Add a custom role.
Add object groups.
Create object groups to organize the assets, application servers, or protection plans in your NetBackup environment. Object groups determine, for example, what assets that a user can view or manage.
Grant access for users through access rules.
Create the access rules that include a user, the role a user has, and the object group that they have access to. You can create multiple access rules for a user, which means that a user can have multiple RBAC roles and access to multiple object groups.