Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Auditing NetBackup operations
  4. About audit events
  5. Viewing audit events
NetBackup™ Security and Encryption Guide

Viewing audit events

The Audit Events tab displays NetBackup events according to the audit categories that you select with the filter. NetBackup records a number of events that occur while you work with the product. For example, a security certificate is issued to a host, an authorization token is deleted, connection between hosts is established and so on.

To view status of audit events

  1. Open the NetBackup web UI.
  2. On the left, click Security > Security events.
  3. Click the Audit events tab.
  4. Click the filter icon to select the audit event categories that you want to view.
  5. The following information is displayed.

    Event

    A brief description for the audit event that took place.

    User

    The user name and details related to the audit event.

    Description

    Full description of the audit event that took place.

    Reason

    The reason for the audit event, if provided by the user.

  6. To see the details for an audit event, click on the name of the event.

Note:

If you see audit records in the Connection category, make sure to review the record details. For certain records in this category, the Date field that is displayed in the details indicates when the audit record was posted to the primary server. It does not necessarily indicate when an individual event occurred. This type of audit record (for example, a certificate verification failure (CVF) record) represents a group of events that have occurred over a time period. The audit record details provide the Beginning Event Time and Ending Event Time of the time period as well as the Event Count (the total number of events that occurred in that time period).

Feedback

Was this page helpful?
Previous

About audit events

Next

Troubleshooting auditing issues related to the Access History tab

Feedback

Was this page helpful?