Veritas NetBackup™ 8.0 Security and Encryption Guide
- Increasing NetBackup security
- Security deployment models
- Port security
- About NetBackup daemons, ports, and communication
- Additional port information for products that interoperate with NetBackup
- About configuring ports
- Auditing NetBackup operations
- Configuring Enhanced Auditing
- Access control security
- NetBackup Access Control Security (NBAC)
- Configuring NetBackup Access Control (NBAC)
- Configuring Access Control host properties for the master and media server
- Access Control host properties dialog for the client
- Troubleshooting Access Management
- Windows verification points
- UNIX verification points
- Verification points in a mixed environment with a UNIX master server
- Verification points in a mixed environment with a Windows master server
- About determining who can access NetBackup
- Viewing specific user permissions for NetBackup user groups
- Security certificates in NetBackup
- Overview of security certificates in NetBackup
- About the Security Management utilities
- About host name-based certificates
- About host ID-based certificates
- Using the Certificate Management utility to issue and deploy host ID-based certificates
- About certificate deployment security levels
- Setting up trust with the master server (Certificate Authority)
- About reissuing host ID-based certificates
- About Token Management for host ID-based certificates
- About revoking host ID-based certificates
- Security certificate deployment in a clustered NetBackup setup
- About deployment of a host ID-based certificate on a clustered NetBackup host
- About deploying a new host ID-based certificate
- Data at rest encryption security
- About NetBackup client encryption
- Configuring standard encryption on clients
- About configuring standard encryption from the server
- Configuring legacy encryption on clients
- About configuring legacy encryption from the client
- About configuring legacy encryption from the server
- Additional legacy key file security for UNIX clients
- Data at rest key management
- About the Key Management Service (KMS)
- Installing KMS
- Configuring KMS
- About key groups and key records
- Overview of key record states
- Configuring NetBackup to work with KMS
- About using KMS for encryption
- KMS database constituents
- Command line interface (CLI) commands
- About exporting and importing keys from the KMS database
- Troubleshooting KMS
Viewing host ID-based certificate details
Details for each host ID-based certificate can be viewed in the NetBackup Administration Console or by using the nbcertcmd command.
To view certificate details in the NetBackup Administration Console
- In the NetBackup Administration Console, expand Security Management > Certificate Management.
The certificate details are displayed in the right pane.
- By default, the host IDs are not displayed. (See Table: Hidden and displayed certificate details.)
To display or hide columns, right-click on the pane and select Columns > Layout. Select the columns to show or hide in the Column Layout dialog box.
Table: Hidden and displayed certificate details
Column head | Description | Displayed by default |
---|---|---|
Certificate State | The certificate state (Active, Revoked, or Expired). | Yes |
Host | The name of the host to which the certificate is issued. | Yes |
Host Type | The type of host (server or client). | Yes |
Issued On | The date and time on which the certificate was issued. | Yes |
Valid From | The date upon which the certificate becomes valid. | Yes |
Valid Until | The date until after which the certificate is invalid. | Yes |
Days Remaining Until Expiry | The number of days until the certificate expires and cannot be used. | Yes |
NetBackup Host ID | The unique ID assigned to the host. | No |
Serial Number | The serial number of the certificate. | No |
Reason For Revocation | The reason for a certification revocation, if the administrator entered a reason at the time of revocation. | No |
Last Updated On | The date when the certificate details were last updated. | No |
To view certificate details using the nbcertcmd command
- To view all of the host IDs that are assigned to a host from different master servers, run the following command on a NetBackup host:
nbcertcmd -listCertDetails