Veritas NetBackup™ Appliance Security Guide
- About the NetBackup appliance Security Guide
- User authentication
- About user authentication on the NetBackup appliance
- About configuring user authentication
- About user name and password specifications
- User authorization
- Intrusion prevention and intrusion detection systems
- Log files
- Operating system security
- Data security
- Web security
- Network security
- Call Home security
- About AutoSupport
- About Call Home
- About SNMP
- Remote Management Module (RMM) I security
- STIG and FIPS conformance
- Appendix A. Security release content
Generic user authentication guidelines
Use the following guidelines for authenticating users on the appliance:
Only one remote user type (LDAP, Active Directory (AD), or NIS) can be configured for authentication on an appliance. For example, if you currently authenticate LDAP users on an appliance, you must remove the LDAP configuration on it before changing to AD user authentication.
The NetBackupCLI role can be assigned to a maximum of nine (9) user groups at any given time.
You cannot grant the NetBackupCLI role to an existing local user. However, you can create a local NetBackupCLI user by using the Manage > NetBackupCLI > Create command from the NetBackup Appliance Shell Menu.
You cannot add a new user or a user group to an appliance with the same user name, user ID, or group ID as an existing appliance user.
Do not use group names or user names that are already used for appliance local users or NetBackupCLI users. Additionally, do not use the appliance default names admin or maintenance for LDAP, AD, or NIS users.
The appliance does not handle ID mapping for LDAP or NIS configuration. Veritas recommends that you reserve a user ID and group ID range of 1000 to 1999 for appliance users only.