Veritas NetBackup™ Appliance Administrator's Guide
- Overview- About NetBackup appliances
- About the Primary Server role
- About the media server role
- About accessing the NetBackup Appliance Web Console
- About the NetBackup Appliance Shell Menu
- About appliance console components
- About the NetBackup Appliance Web Console login page
- NetBackup appliance home page
- Common tasks in NetBackup appliance
- About the NetBackup appliance documentation
 
- Monitoring the NetBackup appliance- About monitoring the NetBackup appliance
- About hardware monitoring and alerts
- About Symantec Data Center Security on the NetBackup appliance
 
- Managing a NetBackup appliance from the NetBackup Appliance Web Console- About the Manage views
- About storage configuration- Manage > Storage
- Manage > Storage > Shares
- About Universal shares migration
- Checking partition details
- Resizing a partition
- Resize dialog
- Troubleshooting resize-related issues
- Moving a partition
- Move dialog
- Moving the MSDP partition from a base disk to an expansion disk for optimum performance
- Scanning storage devices from the NetBackup Appliance Web Console
- Adding the storage space from a newly available disk
- Removing an existing storage disk
- Monitoring the progress of storage manipulation tasks
- Scanning storage devices using the NetBackup Appliance Shell Menu
- About Copilot functionality and Share management
- About viewing storage space information using the Show command
- About storage email alerts
 
- About appliance supported tape devices
- About configuring Host parameters for your appliance
- Manage > Appliance Restore
- Manage > License
- About the Migration Utility
- Software release updates for NetBackup Appliances
- About installing EEBs
- About installing NetBackup Administration Console and client software
- Manage > Additional Servers
- Manage > File Manager
- Manage > High Availability
 
- Managing NetBackup appliance using the NetBackup Appliance Shell Menu- Expanding the bandwidth on the NetBackup appliance
- About configuring the maximum transmission unit size
- About OpenStorage plugin installation
- About mounting a remote NFS
- About running NetBackup commands from the appliance- About NetBackup administrator capabilities- Running NetBackup commands from the NetBackup appliance
- Creating a NetBackup touch file from the NetBackup appliance
- About NetBackup operating system commands
- Best practices for running NetBackup commands from the NetBackup appliance
- Known limitations of running NetBackup commands from the NetBackup appliance
 
- Creating NetBackup administrator user accounts
- Deleting NetBackup administrator user accounts
- Viewing NetBackup administrator user accounts
 
- About NetBackup administrator capabilities
- About Auto Image Replication between appliances
- About forwarding logs to an external server
- About high availability configuration
- About data erasure
 
- Understanding the NetBackup appliance settings- About modifying the appliance settings
- Settings > Notifications
- Settings > Network- VLAN configuration for NetBackup Appliances
- Settings > Network > Network Settings
- Settings > Network > Fibre Transport
- Settings > Network > Host
- About IPv4-IPv6-based network support
 
- Settings > Date and Time
- Settings > Authentication- About configuring user authentication
- About authorizing NetBackup appliance users
- Settings > Authentication
- Settings > Authentication > LDAP- Adding an LDAP server configuration
- Importing an LDAP server configuration
- Setting the SSL certification
- Exporting an LDAP configuration
- Unconfiguring LDAP user authentication
- Enabling the LDAP server configuration
- Disabling the LDAP server configuration
- Deleting LDAP configuration parameters
- Adding LDAP configuration parameters
- Adding an LDAP attribute mapping
- Deleting an LDAP attribute mapping
 
- Settings > Authentication > Active Directory
- Settings > Authentication > Kerberos-NIS
- Settings > Authentication > User Management
 
- Settings > Password Management
 
- Troubleshooting
- Deduplication pool catalog backup and recovery
- Index
About data erasure
Data erasure enables you to erase the data on any storage disk on a NetBackup appliance. The data erasure complies with NIST SP800-88. When you erase the data on a storage disk, the data that was stored on the disk is destroyed and cannot be recovered. Once a data erasure operation is running on a disk, it is blocked from any other storage management operations.
If you start erasing data from the disks that contain partitions, you can no longer backup to or restore from those partitions. Veritas recommends that you complete or cancel all jobs on the partition that is to be erased.
Note:
The erased data cannot be recovered. Make sure that the data has been backed up and verified, or that the data is no longer needed.
The data erasure is only supported from the NetBackup Appliance Shell Menu. The following command operations are available from the Main > Manage > Storage view:
- Erase Configure - Configures to erase data on one or more disks at a time. A wizard guides you through the configuration. Data erasure starts immediately after the configuration completes. The time duration of erasure is determined by the size of the disks, the pass algorithm used, and the workload on the appliance. 
- Erase Show - Shows the erasure operations in progress and the erasure status for all the storage disks on the appliance. 
- Erase Abort - Aborts a running erasure operation. 
The data erasure wizard lets you select the disks from where you want to erase the data. The wizard lists all the storage disks on the appliance with the following exceptions:
- Disks where the erasure process is in progress - You can erase the data from the same disk again as needed. - Note: - The disk with the Configuration partition can only be erased one time because the data erasure feature is no longer available after the Configuration partition has been destroyed. 
- Disks that are allocated to the Optimized Share Reserve - You need to delete the Optimized Share Reserve before you can erase the data on the disk. 
On a NetBackup appliance, a storage disk can contain one storage partition or many different partitions. The Configuration, NetBackup Catalog, MSDP Catalog are metadata partitions and cannot be erased prematurely.
Before your selection, note the following:
- The disk with the Configuration partition can only be erased when the other disks no longer contain partitions and the Optimized Share Reserve no longer exists. - Caution: - You cannot configure the data erasure after the erasure starts on the disk with the Configuration partition. 
For example, you can consider the following best practice to erase data on the disks:
- Delete the Optimized Share Reserve if any exists, and then perform data erasure on the disks that were allocated to the Optimized Share Reserve. 
- Erase data on the disks with AdvancedDisk and MSDP partitions 
- Erase data on the disks with MSDP Catalog and NetBackup Catalog partitions 
- Erase data on the disk with the Configuration partition 
To minimize the chance that the erased data is recoverable, the data erasure provides options for the pass algorithm that is used to overwrite all of the data on a disk. When you are prompted, specify one of the following pass algorithms for the current configuration:
- One-pass algorithm - Overwrites the disk with a randomly-selected digital pattern. This option takes the least amount of time. 
- Three-pass algorithm - Overwrites the disk a total of three times. The first pass, it uses a pre-selected digital pattern. The second pass uses the binary complement of the previous pattern, and the last pass uses a randomly-selected digital pattern. 
- Seven-pass algorithm - Overwrites the disk a total of seven times. In each pass, the data is overwritten with a randomly-selected digital pattern or with the binary complement of the previous pattern. 
You can only use one of the three pass algorithms each time you configure the data erasure. However, you can configure the data erasure multiple times. For example, you need to configure the data erasure two times if you want to erase data on some disks with the one-pass algorithm and the other disks with the seven-pass algorithm. If you want to configure the data erasure again, you do not need to wait for the current erasure operations to complete.
After you have erased data on all the storage disks on the appliance, use the IPMI console to power off the appliance.
Note:
The data erasure always shows the following error message when it initializes the erasure task on the Configuration disk. This is because the status of the initialization is not available at that time. For more details about this issue, refer to the NetBackup Appliance Release Notes.
Note:
After a data erasure process is complete, the erased disks are in an unusable state. If you want to restore the disks to a usable state, perform a factory reset on the appliance.
See Configuring the data erasure.