Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ for Microsoft Exchange Server Administrator's Guide
  3. Configuring Exchange client host properties
  4. About the Exchange credentials in the client host properties
NetBackup™ for Microsoft Exchange Server Administrator's Guide

About the Exchange credentials in the client host properties

The Exchange credentials in the client host properties indicate the account that has necessary permissions to perform Exchange restores. The permissions that are required depend on the Exchange version that you have.

See the following topics:

See Creating a privileged NetBackup user account for EWS access.

See Creating a minimal NetBackup account for Exchange operations.

Note the following:

  • Credentials are stored in the Credential Management System (CMS).

  • Review any auto-discovered mappings that NetBackup creates.

    See Reviewing the auto-discovered mappings.

  • To use GRT, configure the Exchange credentials on all granular clients.

    Alternatively, you can configure the Exchange credentials only on the granular clients that perform restores. In this case, for the entire domain add "Exchange Servers" to the "View-Only Organization Management" role group. Perform this configuration in the Exchange Administration Center (EAC) or in Active Directory. See the following Microsoft article for more information:

    http://technet.microsoft.com/en-us/library/jj657492

    See Configuring an Exchange backup that uses Granular Recovery Technology (GRT) (non-VMware backups).

    See Configuring Granular Recovery Technology (GRT) with a VMware backup that protects Exchange.

  • The account that you configured for the Exchange credentials must also have the right to "Replace a process level token."

    See About configuring the account for NetBackup Exchange operations with the right to Replace a process level token.

  • For database restores from VMware backups, the Exchange credentials that you provide must have permissions to restore VM files.

  • If you want to restore from a VMware snapshot copy that was created with Replication Director, do the following:

    • Provide the Exchange credentials in the Domain\user and Password fields.

    • Configure the NetBackup Client Service with an account that has access to the CIFS shares that are created on the NetApp disk array.

      See Configuring NetBackup with access to the CIFS share on the NetApp disk array.

  • If you specify the minimal NetBackup account for the Exchange credentials in the client host properties, NetBackup can back up only active copies of the Exchange databases. If you select Passive copy only in the Exchange database backup source field when you create a policy, any backups fail. The failure occurs because the Microsoft Active Directory Service Interface does not provide a list of database copies for a minimal account.

Feedback

Was this page helpful?
Previous

About consistency checks options for an Exchange backup

Next

Configuring the account for NetBackup for Exchange operations

Feedback

Was this page helpful?