Problem
Severity Plugin Id Name
Medium(6.4) 51192 SSL Certificate Cannot Be Trusted
Medium(6.4) 57582 SSL Self-Signed Certificate
Medium(5.0) 45411 SSL Certificate with Wrong Hostname
QID-38173 SSL Certificate - Signature Verification Failed Vulnerability
Solution
NetBackup, NetBackup Appliances and OpsCenter generate a self-signed SSL certificate for the first time hostname configuration, which is by design and is not an issue.
So SSL Certificate Cannot Be Trusted, SSL Self-Signed Certificate, and Signature Verification Failed Vulnerability reported vulnerabilities can be safely ignored.
For the "SSL Certificate with Wrong Hostname" issue on appliances, a fully qualified hostname should be used for the configuration of hostname step during the appliance setup to avoid this vulnerability alert.
Applies to:
- NetBackup 7.x, 8.x, 9.x, 10.x
- Appliances 2.x, 3.x, 4.x, 5.x
- NetBackup Opscenter
- NetBackup IT Analytics
- Any security vulnerability scanning application (Nessus, Tenable, Qualys, etc.)