Veritas NetBackup™ Appliance Security Guide
- About the NetBackup appliance Security Guide
- User authentication
- About user authentication on the NetBackup appliance
- About configuring user authentication
- About user name and password specifications
- User authorization
- Intrusion prevention and intrusion detection systems
- Log files
- Operating system security
- Data security
- Web security
- Network security
- Call Home security
- About AutoSupport
- About Call Home
- About SNMP
- Remote Management Module (RMM) I security
- STIG and FIPS conformance
- Appendix A. Security release content
About the Administrator user role
The NetBackup appliance provides access control mechanisms to prevent unauthorized access to the backup data on the appliances. These mechanisms include administrative user accounts that provide elevated privileges to modify appliance configurations, monitoring the appliance, and so on. Only the users that are assigned the Administrator role are authorized to configure and manage the NetBackup appliance.
The Administrator role should be provided only to authorized system administrators to prevent unauthorized and inappropriate modification of the appliance configuration or the backup data that is contained in the expansion disk storage.
An Administrator user can access the appliance using the NetBackup Appliance Shell Menu through SSH, or the NetBackup Appliance Web Console over HTTPS.
An Administrator user as a superuser can perform all the following tasks:
Perform appliance initial configuration.
Monitor hardware, storage, and SDCS logs.
Manage storage configuration, additional servers, licenses and so on.
Update configuration settings like Date and Time, Network, Notification, etc.
Restore the appliance.
Decommission the appliance.
Apply patches to the appliance.
Mount or map shares. The following limitations apply:
Windows: Only the local admin user is authorized to mount or map Windows CIFS shares.
Linux: Only users with a root access account can issue the mount command directly to mount NFS shares.
A local, LDAP, Active Directory (AD), or NIS user needs to have the permissions of the Administrator user role to access and administer the appliance. After you have added a new user or a user group, use thepage from the NetBackup Appliance Web Console to grant the Administrator user permissions.