Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Deduplication Guide
  5. Using the NetBackup Deduplication Shell
  7. Managing certificates from the deduplication shell
  9. Viewing the certificate details from the deduplication shell
NetBackup™ Deduplication Guide

Viewing the certificate details from the deduplication shell

To view the certificate details, log in to the deduplication shell as the msdpadm user, or for NetBackup Flex Scale, as an appliance administrator.

Use the following commands to view the details of the current certificate configuration:

  • setting certificate list certificates

    Displays the details of all the host certificates that are available on the server

  • setting certificate list-CA-cert-details

    Displays the details of all the CA certificates that are available on the server

  • setting certificate show-CA-cert-detail

    Displays the NetBackup CA certificate details of the primary server that is currently in use

  • setting certificate show-external-CA-cert-detail

    Displays the external CA certificate details of the primary server that is currently in use

  • setting certificate list-enrollment-status

    Retrieves the enrollment status of the associated primary servers from the local certificate store

  • setting certificate show-CRL-check-level

    Displays the revocation check level for the external certificates

Use the following commands to verify the status of the certificates:

  • setting certificate host-self-check

    Verifies whether the host certificate for the server is in the certificate revocation list (CRL)

  • setting certificate external-CA-health-check

    Verifies the external certificates, the RSA keys, and the trust store

Feedback

Was this page helpful?
Previous

Managing certificates from the deduplication shell

Next

Importing certificates from the deduplication shell

Feedback

Was this page helpful?