Veritas NetBackup™ Security and Encryption Guide
- Increasing NetBackup security
- Security deployment models
- Port security
- About NetBackup daemons, ports, and communication
- Additional port information for products that interoperate with NetBackup
- About configuring ports
- Auditing NetBackup operations
- Configuring Enhanced Auditing
- Access control security
- NetBackup Access Control Security (NBAC)
- Configuring NetBackup Access Control (NBAC)
- Configuring Access Control host properties for the master and media server
- Access Control host properties dialog for the client
- Troubleshooting Access Management
- Windows verification points
- UNIX verification points
- Verification points in a mixed environment with a UNIX master server
- Verification points in a mixed environment with a Windows master server
- About determining who can access NetBackup
- Configuring user groups
- About defining a user group and users
- Viewing specific user permissions for NetBackup user groups
- Security management in NetBackup
- About the Security Management utilities
- About audit events
- About host management
- Adding shared or cluster mappings
- Allowing or disallowing automatic certificate reissue
- About global security settings
- About host name-based certificates
- About host ID-based certificates
- Using the Certificate Management utility to issue and deploy host ID-based certificates
- About certificate deployment security levels
- Setting up trust with the master server (Certificate Authority)
- About reissuing host ID-based certificates
- About Token Management for host ID-based certificates
- About the host ID-based certificate revocation list
- About revoking host ID-based certificates
- Security certificate deployment in a clustered NetBackup setup
- About deployment of a host ID-based certificate on a clustered NetBackup host
- Data at rest encryption security
- About NetBackup client encryption
- Configuring standard encryption on clients
- About configuring standard encryption from the server
- Configuring legacy encryption on clients
- About configuring legacy encryption from the client
- About configuring legacy encryption from the server
- Additional legacy key file security for UNIX clients
- Data at rest key management
- About the Key Management Service (KMS)
- Installing KMS
- Configuring KMS
- About key groups and key records
- Overview of key record states
- Configuring NetBackup to work with KMS
- About using KMS for encryption
- KMS database constituents
- Command line interface (CLI) commands
- About exporting and importing keys from the KMS database
- Troubleshooting KMS
- Regenerating keys and certificates
- NetBackup web services account
Audit Events Details dialog box
The Details dialog box displays the information specific to the audit event that you have selected on the Audit Events tab.
See Audit Events tab.
The dialog box displays the following details:
Description of the audit event that you have selected.
User who triggered the event.
Date and time when the audit event was recorded.
Audit category, for example Certificate (CERT), Login (LOGIN), Security Configuration (SEC_CONFIG), or Token (TOKEN).
Action that the user has taken, for example CREATE (created a certificate) or MODIFY (modified a security configuration)
Reason for the audit event.
If you see audit records in the CONNECTION category, make sure to review the record details. For certain records in this category, the Date field that is displayed on the dialog box indicates when the audit record was posted to the master server. It does not necessarily indicate when an individual event occurred. This type of audit record (for example, a certificate verification failure (CVF) record) represents a group of events that have occurred over a time period. The audit record details provide the Beginning Event Time and Ending Event Time of the time period as well as the Event Count (the total number of events that occurred in that time period).
Following are the audit trail details for the events that are displayed on the dialog box:
Attribute of the associated audit event. For example: If a host ID-to host name mapping is modified, in the audit trail details, the following attributes are displayed: isApproved, isAddedManually, ApprovalState
Old value of the attribute that is associated with the audit event.
New value of the attribute.