Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Steps to protect Access Appliance
  4. About multifactor authentication
  5. Enforcing multifactor authentication for all users
NetBackup and NetBackup Appliances Hardening Guide

Enforcing multifactor authentication for all users

Only the Access Appliance administrator can enforce multifactor authentication for all Access Appliance users.

Before you enforce multifactor authentication:

  • Multifactor authentication can be enforced only if at least two local Appliance administrator users have configured it.

  • You can set a future start date for enforcement so that the users get sufficient time to configure their multifactor authentication.

  • If multifactor authentication is not configured by the start date, the user will not have access to the appliance. If the user's automation workflow uses login API, then that will also be impacted.

  • Once multifactor authentication is enforced, it cannot be reversed.

  • It is not possible to postpone the start date of enforcement after it is set.

  • You can prepone the start date for enforcement using the Edit enforcement button on the Settings > Security management > Multifactor authentication page.

  • The start date for enforcement cannot be more than 90 days from the current date.

To enforce multifactor authentication for all users

  1. Sign in to the Access Appliance UI.
  2. Go to Settings > Security management > Multifactor authentication.
  3. Click Enforce to enforce multifactor authentication for all Access Appliance users.

    Notify all users that they must configure multifactor authentication for their user accounts to be able to successfully sign in.

    See Configuring multifactor authentication for your user account.

Feedback

Was this page helpful?
Previous

Disabling multifactor authentication for your user account

Next

Configuring multifactor authentication for your user account when it is enforced in the cluster

Feedback

Was this page helpful?