Select a security level for NetBackup certificate deployment
NetBackup offers several security levels for the NetBackup certificate deployment. The security level determines what security checks the NetBackup certificate authority (CA) performs before it issues a certificate to a NetBackup host. The level also determines how frequently the Certificate Revocation List (CRL) for the NetBackup CA is refreshed on the host.
More details are available for security levels, NetBackup certificate deployment, and the NetBackup CRL:
To select a security level for NetBackup certificate deployment
- At the top, select Settings > Global security.
- Select the Secure communication tab.
- For Security level for certificate deployment, select a security level.
If you choose to use NetBackup certificates, they are deployed on hosts during installation, after the host's administrator confirms the primary server fingerprint. The security level determines if an authorization token is required or not for a host.
Very high
NetBackup requires an authorization token for every new NetBackup certificate request.
High (Default)
NetBackup does not require an authorization token if the host is known to the primary server. Known means that the host appears in a NetBackup configuration file, the EMM database, a backup policy, or the host is a legacy client.
Medium
NetBackup issues NetBackup certificates without an authorization token if the primary server can resolve the host name to the IP address from which the request was originated.
- Select Save.