Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Section II. Encryption of data-in-transit
  4. NetBackup CA and NetBackup certificates
  5. Host ID-based certificate deployment in a clustered setup
  6. About deployment of a host ID-based certificate on a clustered NetBackup host
NetBackup™ Security and Encryption Guide

About deployment of a host ID-based certificate on a clustered NetBackup host

Review the following scenarios for certificate deployment on cluster nodes:

  • In case of fresh NetBackup installation, certificate on an active node is deployed automatically. You must manually deploy certificates on all inactive nodes.

  • In case of disaster recovery, certificates for active and inactive nodes are not recovered. After you install NetBackup in a disaster recovery mode after a disaster, you must manually deploy certificates on all nodes.

    See Generating a certificate on a clustered primary server after disaster recovery installation.

Note:

In case of upgrade, active or inactive nodes may already have a certificate. You can verify whether a cluster node has a certificate or not.

See Viewing certificate details of a clustered NetBackup setup.

See Host ID-based certificate deployment on the active primary server node.

See Host ID-based certificate deployment on inactive primary server nodes.

Feedback

Was this page helpful?
Previous

Host ID-based certificate deployment in a clustered setup

Next

Host ID-based certificate deployment on the active primary server node

Feedback

Was this page helpful?