Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Security and Encryption Guide
  5. Section II. Encryption of data-in-transit
  7. NetBackup CA and NetBackup certificates
  9. Host ID-based certificate deployment in a clustered setup
  11. Deploying host ID-based certificates on cluster nodes
NetBackup™ Security and Encryption Guide

Deploying host ID-based certificates on cluster nodes

You must manually deploy certificates on all inactive nodes.

In certain scenarios, you need to manually deploy host ID-based certificates also on active nodes.

To manually deploy a host ID-based certificate on a primary server cluster node

  • Run the following commands on the primary server cluster node:

    • nbcertcmd -getCACertificate

    • nbcertcmd -getCertificate [-file authorization_token_file]

    See About Token Management for host ID-based certificates.

Feedback

Was this page helpful?
Previous

Host ID-based certificate deployment on inactive primary server nodes

Next

Revoking a host ID-based certificate for a clustered NetBackup setup

Feedback

Was this page helpful?