Veritas NetBackup™ Troubleshooting Guide
- Troubleshooting procedures
- Troubleshooting NetBackup problems
- Troubleshooting vnetd proxy connections
- Troubleshooting security certificate revocation
- Verifying host name and service entries in NetBackup
- Frozen media troubleshooting considerations
- Troubleshooting problems with the NetBackup web services
- Resolving PBX problems
- Troubleshooting problems with validation of the remote host
- About troubleshooting Auto Image Replication
- Using NetBackup utilities
- About the NetBackup support utility (nbsu)
- About the NetBackup consistency check utility (NBCC)
- About the robotic test utilities
- Disaster recovery
- About disk recovery procedures for UNIX and Linux
- About clustered NetBackup server recovery for UNIX and Linux
- About disk recovery procedures for Windows
- About clustered NetBackup server recovery for Windows
- About recovering the NetBackup catalog
- About NetBackup catalog recovery and OpsCenter
- About recovering the entire NetBackup catalog
- About recovering the NetBackup catalog image files
- About recovering the NetBackup relational database
Troubleshooting problems with validation of the remote host
NetBackup uses Secure Socket Layer (SSL) to communicate securely with other NetBackup hosts. Unless the other host is 8.0 or earlier, NetBackup 8.1 always requires the communication to be secure. For this, all hosts that are setting up or accepting a connection validate the remote host against its details available with the master server. The connection is dropped, if the host validation fails and this in turn can cause certain operations (like backup or restore) to fail.
To resolve the issues that arise because of host validation failures, do the following:
Check the logs pertaining to host validation failures.
Verify that the NetBackup web services are running on the master server.
Verify that the NetBackup web server certificate is correctly deployed.
Verify that the host can connect to the NetBackup web service on the master server.
See the 'About the communication between a NetBackup client located in a demilitarized zone and a master server through an HTTP tunnel' topic from the NetBackup Security and Encryption Guide.
If the remote host is 8.0 or earlier, verify that insecure communication with such hosts is enabled.
Verify if there are any host ID-to-host name mappings for the remote host that are pending for approval on the master server.
If NetBackup software of the remote host was recently downgraded from 8.1 to an earlier version, ensure that host information is reset on the master server.
See the 'Resetting a NetBackup host attributes' topic from the NetBackup Security and Encryption Guide.
Verify that the host cache has updated information about the remote host.
See Clearing host cache.
If the NetBackup web server is configured to use external CA-signed certificates, ensure that the host certificate is successfully enrolled with the appropriate master server domain.
For more information on the external CA support and certificate enrollment, refer to the NetBackup Security and Encryption Guide.