NetBackup™ Web UI Security Administrator's Guide
- Introducing the NetBackup web user interface
- Managing role-based access control
- Steps to create an object group
- Adding AD or LDAP domains
- Security events and audit logs
- Managing hosts
- Managing security certificates
- Managing NetBackup security certificates
- Using external security certificates with NetBackup
- Managing user sessions
- Managing master server security settings
- Creating and using API keys
- Configuring smart card authentication
- Troubleshooting access to the web UI
- Unable to add AD or LDAP domains with the vssat command
NetBackup default RBAC roles
With the NetBackup RBAC default roles you can delegate for tasks like NetBackup security management, protection plan configuration and job management, and protection and recovery of assets.
The NetBackup security administrator performs the following tasks in the NetBackup environment:
Manages role-based access control. This user can delegate access to NetBackup. This task includes managing the users that can access NetBackup, the role or permissions that users have, and the NetBackup assets that users can access.
Oversees the security management. This task includes managing NetBackup hosts and certificates, global security settings, session management, locked NetBackup user accounts, and API keys. Users with this role can also view security events.
The backup administrator performs the following tasks in the NetBackup environment:
Configures cloud providers, application servers, and intelligent groups.
Configures protection plans for the workload administrator.
Manages all jobs activity. Monitors all job operations. Able to cancel, suspend, resume, restart, and delete jobs.
The backup administrator can also configure NetBackup to send email notifications to their ticketing system when certain job failures occur.
Configures all storage options for the Media Server Deduplication Pool (MSDP) and AdvancedDisk.
Configures NetBackup to work with Cloud and OpenStorage options.
Manages recovery points, including the ability to restore, expire, copy, and duplicate recovery points.
Views the usage reporting details on backup data size for NetBackup master servers.
You can limit access (through object groups) for users with therole or with a custom role. However, you cannot limit the jobs that a backup administrator can see. Users with this role can view all job activity.
The workload administrator performs the following tasks in the NetBackup environment:
Manages the jobs that they initiate.
Manages the assets they are granted access to.
Monitors protection status and subscribes assets to protection plans.
Performs the recovery for assets they manage.
You can limit access (through object groups) for users with therole.