Veritas NetBackup™ Appliance Security Guide
- About the NetBackup appliance Security Guide
- User authentication
- User authorization
- Intrusion prevention and intrusion detection systems
- Log files
- Operating system security
- Data security
- Web security
- Network security
- Call Home security
- IPMI security
- STIG compliance
- Appendix A. Security release content
About user authentication on the NetBackup appliance
Table: NetBackup appliance account types describes the user accounts that are available on the appliance.
Table: NetBackup appliance account types
Account type | Description |
---|---|
User | The NetBackup appliance is administered and managed through user accounts. You can create local user accounts, or register users and user groups that belong to a remote directory service. Each user account must authenticate itself with a user name and password to access the appliance. For a local user, the user name and password are managed on the appliance. For a registered remote user, the user name and password are managed by the remote directory service. In order for a new user account to log on and access the appliance, you must first authorize it with a role. By default, a new user account does not have an assigned role, and therefore it cannot log on until you grant it a role. You can grant the following roles to a user or a user group:
|
admin | The admin account is the default Administrator user on the NetBackup appliance. This account provides full appliance access and control for the default Administrator user. New NetBackup appliance are shipped with the following default logon credentials:
When mounting or mapping shares from an appliance, make note of the following:
|
Maintenance | The Maintenance account is used by Veritas Support through the NetBackup Appliance Shell Menu (after an administrative log-on). This account is used specifically to perform maintenance activity or to troubleshoot the appliance. |
sisips | The sisips account is an internal user for implementing the SDCS policies. |
root | The root account is a restricted user that is only accessed by Veritas Support to perform maintenance tasks. If you try to access this account, the following message is displayed: Permission Denied !! Access to the root account requires overriding the Symantec Intrusion Security Policy. Please refer to the appliance security guide for overriding instructions. Warning: Please note that you can override the Veritas Intrusion Security Policy (ISP) to gain access to the root account. However, doing so is not recommended as it puts the system at risk and vulnerable to attack.See Overriding the NetBackup appliance intrusion prevention system policy. |