Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Security and Encryption Guide
  5. Malware detection
  7. Prerequisites for a scan host
NetBackup™ Security and Encryption Guide

Prerequisites for a scan host

A scan host is a host machine that has the required malware tool configured. Once it is integrated with NetBackup, NetBackup initiates scanning on the scan host.

The following prerequisites apply for the scan host:

  • The malware tool must be installed and configured.

  • The scan host must have a share type configured that is either an NFS or an SMB client.

  • The scan host must be reachable from the media server over SSH.

    Note:

    SSH connection to scan host from the media server must be successful.

  • OpenSSH must be configured on windows scan host.

    Note:

    For Windows 2016, get OpenSSH from GIT hub repository and for Windows 2019, enable OpenSSH server feature. For more details, refer to Microsoft documentation.

    Note:

    You can select the scan host pool irrespectively of the share type and scan host platform.

  • The minimum required configuration for the scan host is 8 CPU and 32-GB RAM.

  • NetBackup footprint is not required on the scan host. The existing systems with the NetBackup client or media server can be used as scan host, too.

  • For the supported operating systems of the scan host, refer Software Compatibility List

  • For non-root user on Linux:

    • Allow ssh connection using non-root user. For example: Add the Allow Users root scanuser entry in the /etc/ssh/sshd_config file.

      Note:

      Scanuser is a non-root user that is already created in the system.

    • Provide user permission to mount and umount .Add user permission entry in sodoers file. For example: In the /etc/sudoers file add one of the following as required: -

      • scanuser ALL=(ALL) NOPASSWD:ALL

      • scanuser ALL=(ALL) NOPASSWD:/bin/umount, /bin/mount

    • Configure malware tool using non-root user on the scan host.

      Note:

      If scanning is done using root user previously, then change the permission of the /tmp/malware folder to give write permissions to the non-root user. For example chmod a+rwx /tmp/malware

Feedback

Was this page helpful?
Previous

Configuration steps for malware detection

Next

Prerequisites for scan host pool

Feedback

Was this page helpful?