Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Section II. Encryption of data-in-transit
  4. Regenerating keys and certificates
  5. Regenerating web server keys and certificates
NetBackup™ Security and Encryption Guide

Regenerating web server keys and certificates

Follow the steps to regenerate Tomcat web server public key, private key, and certificates on the primary server.

Note:

The jkskey is a key to decrypt the keystore used by tomcat and is backed up as part of the catalog backup. There is no need to regenerate it.

To regenerate tomcat keys and certificates

  1. Generate the security certificate. Run the following command:
    • Windows

      set WEBSVC_PASSWORD=<Password of User>

      nbcertconfig -t -user <User Name>

    • UNIX

      export WEBSVC_PASSWORD=<Password of User>

      nbcertconfig -t -user <User Name>

  2. Regenerate other files in tomcatcreds folder apart from the keystore and the credentials file. Run the following command:
    • Windows

      Install_Path\NetBackup\wmc\bin\install>configurecerts.bat

    • UNIX

      /usr/openv/wmc/bin/install/configurecerts

Feedback

Was this page helpful?
Previous

Regenerating nbcertservice keys and certificates

Next

Regenerating JWT keys

Feedback

Was this page helpful?