Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Security and Encryption Guide
  5. Section II. Encryption of data-in-transit
  7. Configuring data-in-transit encryption (DTE)
  9. How DTE configuration settings work in various NetBackup operations
  11. Universal-Share policy backup
NetBackup™ Security and Encryption Guide

Universal-Share policy backup

For Universal-Share policy type, client selection can either be storage server name where the Universal Share resides or the host name where the Universal Share is mounted. So the client for this policy type can be a host where the NetBackup client software is not installed.

Because of this limitation, NetBackup cannot check the client DTE mode. It checks for the global and media server DTE modes for Universal-Share policy backup and works as per the following table:

Table: DTE for Universal-Share policy backup

Global DTE mode

DTE mode of media server 9.1 or later

Media server earlier than 9.1

On

Off

Preferred Off

Data is not encrypted

Data is not encrypted

Data is not encrypted

Preferred On

Data is encrypted

Data is not encrypted

Data is not encrypted

Enforced

Data is encrypted

Operation fails

Operation fails

Feedback

Was this page helpful?
Previous

MSDP backup, restore, and optimized duplication

Next

Catalog backup and recovery

Feedback

Was this page helpful?