Configuring proxy server credentials to use with cloud KMS
Using a proxy server with cloud KMS is optional.
NetBackup can use a proxy server to communicate with the cloud KMS endpoints.
HTTP and HTTPS proxy servers are supported.
If you are using HTTPS proxy server, ensure the following:
The proxy server certificate includes all hostnames of the proxy server in the Subject Alternative Names (SAN) field of the server certificate.
The certificate contains valid CRL distribution point (CDP) endpoints, so that NetBackup can check certificate revocation status.
Only basic authentication is supported. Authentication methods such as Kerberos or NTLM are not supported.
You can use NetBackup web UI or nbkmscmd command to create proxy server credentials.
Refer to the NetBackup Commands Reference Guide to learn more about the nbkmscmd command.