Veritas NetBackup™ Flex Scale Administrator's Guide

Last Published:
Product(s): Appliances (2.1)
Platform: NetBackup Flex Scale OS
  1. Product overview
    1.  
      About Veritas NetBackup™ Flex Scale
  2. Viewing information about the NetBackup Flex Scale cluster environment
    1.  
      Accessing the NetBackup web user interface on the appliance
    2.  
      About the NetBackup Flex Scale management console
    3. About the Dashboard view
      1.  
        Viewing all the activities
    4.  
      Working with NetBackup Flex Scale APIs
  3. NetBackup Flex Scale infrastructure management
    1. User management
      1.  
        Considerations for managing NetBackup Flex Scale users
      2.  
        Adding users
      3.  
        Removing users
      4.  
        Configuring AD server for Universal shares and Instant Access
      5.  
        Configuring AD/LDAP servers for NetBackup services
      6.  
        Configuring additional AD/LDAP servers for managing NetBackup services/Universal Shares/Instant Access
    2.  
      Directory services and certificate management
    3.  
      Region settings management
    4.  
      About NetBackup Flex Scale storage
    5.  
      About Universal Shares
    6.  
      Creating a Protection Point for a Universal Share
    7. Node and disk management
      1.  
        NetBackup Flex Scale network cabling
      2. Adding a node to the cluster using the NetBackup Flex Scale web interface
        1.  
          Considerations for adding a node when disaster recovery is configured
      3.  
        Adding a node using the REST APIs
      4.  
        Replacing a node in a cluster
      5.  
        Starting and stopping nodes
      6.  
        Replacing a disk
      7.  
        Viewing disk details
      8.  
        Viewing node details
    8. License management
      1.  
        Adding or removing storage licenses
      2.  
        Adding NetBackup licenses
  4. NetBackup Flex Scale network management
    1.  
      About network management
    2.  
      Modifying DNS settings
    3.  
      About bonding Ethernet interfaces
    4. Bonding operations
      1.  
        Creating a bond
      2.  
        Modifying a bond
      3.  
        Removing a bond
    5. Data network configurations
      1. Network configuration on plain device (eth5)
        1.  
          Adding a data network
        2.  
          Modifying a data network
        3.  
          Deleting a data network
      2.  
        Network configuration on VLAN (eth5)
      3. Network configuration on bonded interfaces (bond0 on eth5 and eth7)
        1.  
          Adding a data network
      4.  
        VLAN on bond of eth5 and eth7 (bond0)
      5.  
        Support for multiple VLAN when disaster recovery is configured
  5. NetBackup Flex Scale infrastructure monitoring
    1. About alert management
      1.  
        Viewing information about alerts
      2.  
        Managing alerts
    2. About event notification
      1.  
        Purging events
    3. About AutoSupport and Call Home
      1.  
        Setting up email alerts
      2.  
        Setting up SNMP alerts
      3.  
        Configuring Call Home settings
    4.  
      Monitoring hardware components
    5.  
      Monitoring usage and licensed capacity using Veritas NetInsights Console
  6. Resiliency in NetBackup Flex Scale
    1.  
      Erasure coding in NetBackup Flex Scale
    2.  
      Handling split-brain scenario in NetBackup Flex Scale
    3.  
      High availability of the NetBackup primary service
    4.  
      High availability of NetBackup services
    5.  
      NetBackup catalog protection
    6. NetBackup primary service catalog protection using checkpoints
      1.  
        Performing a recovery of the catalog file system using GUI
      2.  
        Performing a recovery of the catalog file system using REST APIs
  7. EMS server configuration
    1.  
      Configuring an external BYOS media server
    2.  
      Configuring an external NBA media server
  8. Site-based disaster recovery in NetBackup Flex Scale
    1.  
      About site-based disaster recovery in NetBackup Flex Scale
    2.  
      Configuring disaster recovery using GUI
    3.  
      Clearing the host cache
    4.  
      Managing disaster recovery using GUI
    5. Performing disaster recovery using RESTful APIs
      1.  
        Establishing trust and setting up authentication
      2.  
        Configuring disaster recovery
      3.  
        Managing disaster recovery
    6.  
      Active-Active disaster recovery configuration
    7.  
      NetBackup optimized duplication using Storage Lifecycle Policies
  9. NetBackup Flex Scale security
    1. STIG overview for NetBackup Flex Scale
      1.  
        STIG-compliant password policy rules
      2.  
        Enabling STIG for NetBackup Flex Scale
      3.  
        Viewing the NetBackup Flex Scale STIG status
    2. FIPS overview for NetBackup Flex Scale
      1.  
        Viewing the NetBackup Flex Scale FIPS status
    3.  
      Managing the login banner
    4.  
      Changing the password policy
    5. Support for immutability in NetBackup Flex Scale
      1.  
        About lockdown modes
      2.  
        Selecting or changing the lockdown mode
      3.  
        Configuring immutability using GUI
    6. Deploying external certificates on NetBackup Flex Scale
      1.  
        Deploying ECA using the GUI
      2.  
        Log locations
      3.  
        Considerations for performing other operations when ECA is deployed
  10. Troubleshooting
    1.  
      Services management
    2. Collecting logs for cluster nodes
      1.  
        Uploading logs to Veritas Support
      2.  
        Downloading logs
    3.  
      Checking and repairing storage
    4. Troubleshooting NetBackup Flex Scale issues
      1.  
        If cluster configuration fails (for example because an IP address that was already in use is specified) and you try to reconfigure the cluster, the UI displays an error but the configuration process continues to run
      2.  
        Validation error while adding VMware credentials to NetBackup
      3.  
        NetBackup Web UI incorrectly displays some NetBackup Flex Scale processes as failed
      4.  
        Unable to create BMR Shared Resource Tree (SRT) on NetBackup Flex Scale Appliance
      5.  
        NetBackup configuration files are not persistent across operations that require restarting the system
  11. Appendix A. Configuring NetBackup optimized duplication
    1. Configuring a Storage Lifecycle Policy for optimized duplication
      1.  
        Creating a Storage Lifecycle Policy for optimized duplication
      2.  
        Configuring a policy to use an SLP
      3.  
        Updating the policy to reverse the replication direction
  12. Appendix B. Disaster recovery terminologies
    1.  
      VVR technology in disaster recovery
    2.  
      About response fields in the GET disaster recovery API
  13. Appendix C. Configuring Auto Image Replication
    1.  
      Auto Image Replication configuration

Directory services and certificate management

The Lightweight Directory Access Protocol (LDAP) is the protocol used to communicate with LDAP servers. LDAP can be used as a directory service for user management. The LDAP server that is present outside the NetBackup Flex Scale cluster is responsible for authentication of users. For sites that use an LDAP server for access or authentication, NetBackup Flex Scale provides a simple LDAP client configuration interface. The NetBackup Flex Scale cluster acts as an LDAP client talking to the LDAP server.

Active Directory (AD) is a technology created by Microsoft that provides a variety of network services including LDAP directory services, Kerberos-based authentication, Domain Name System (DNS) naming, secure access to resources, and more.

  • You can configure AD/LDAP using the NetBackup Flex Scale GUI.

  • You can configure or add only one AD/LDAP server at a time. But you can add multiple AD/LDAP servers to the NetBackup Flex Scalecluster.

  • You can delete an existing AD/LDAP configuration.

  • You cannot modify an existing AD/LDAP configuration. To modify any aspect of the AD/LDAP configuration, you have to delete the existing configuration and add it back with the updated parameters.

When you configure LDAP from the GUI, the domain ID is added as LDAP_Server_FQDN/IP. So, if you add LDAP user from the NetBackup GUI, you have to add the domain name as <user_name>@LDAP_Server_FQDN/IP.

If you have upgraded to NetBackup Flex Scale 2.1 from an earlier version in which the cluster was deployed with both primary server and media servers, the AD/LDAP servers which were already configured in the previous version will have the same name. For AD/LDAP servers which are newly configured on the upgraded cluster can have one of the following domain names:

  • <user name>@AD/LDAP server IP/FQDN

  • <user name>@10.221.xx.xx

  • <user name>@fqdn.domain

To configure AD/LDAP

  1. Navigate to Settings > Directory Services and click Configure.
  2. Enter the inputs required.

    AD/LDAP server address

    IP address or FQDN of the AD/LDAP server

    Port

    Port number on which the AD/LDAP server is listening.

    If AD/LDAP is configured without SSL certificate, then port number should be 389.

    If AD/LDAP is configured with SSL certificate, then port number should be 636.

    Directory type

    Specify the directory type. It can be Open LDAP or Active Directory (when using Microsoft Active Directory)

    User Base DN

    Base DN subtree that is used when searching for user entries on the AD/LDAP server.

    Group Base DN

    Base DN subtree that is used when searching for group entries on the AD/LDAP server.

    Bind administrator

    Distinguished name of theAD/ LDAP user who can search the AD/LDAP directory. Typically, it is the user name of the AD/LDAP server administrator.

    Bind password

    Password for the given AD/LDAP administrator user

    Encryption type

    Specify the encryption type as secure or non-secure.

    In secure method, SSL/TLS is the encryption method.

    If you choose the Encryption type to be SSL/TLS, you have to upload the certificate that you want to use to encrypt and secure the connection with the AD/LDAP server. Click Choose file and upload the certificate.

  3. Click Configure.
  4. You can test the connection after you configure it. Click Test connection. You receive notifications after the successful completion/failure of the test connection.

The AD/LDAP details appear in the Directory Services tab.

You can perform a test connection to validate the AD/LDAP configuration. On the same page, there is an option to remove the AD configuration.