NetBackup Nessus or Tenable scanner 'vulnerabilities' for SSL Certificate

NetBackup Nessus or Tenable scanner 'vulnerabilities' for SSL Certificate

Article: 100013581
Last Published: 2021-11-04
Ratings: 9 1
Product(s): Appliances, NetBackup

Problem

Severity    Plugin Id    Name

Medium(6.4) 51192  SSL Certificate Cannot Be Trusted

Medium(6.4) 57582  SSL Self-Signed Certificate

Medium(5.0) 45411  SSL Certificate with Wrong Hostname

 

Solution

NetBackup and NetBackup Appliances generate a self-signed SSL certificate during first time hostname configuration which is by design and is not an issue.

So "SSL Certificate Cannot Be Trusted" and "SSL Self-Signed Certificate" reported vulnerabilities can be safely ignored.

For the "SSL Certificate with Wrong Hostname" issue on appliances, a fully qualified hostname should be used for the Configuration of hostname step during the appliance setup to avoid this vulnerability alert. 

 

Applies to:

  • NetBackup 7.x, 8.x, 9.x
  • Appliances 2.x, 3.x, 4.x
  • Any security vulnerability scanning application (Nessus, Tenable, Qualys, etc.)
     

 

References

Etrack : 3572920

Was this content helpful?