Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Section III. Encryption of data at rest
  4. Cloud key management service configuration in NetBackup
  5. Configuring proxy server credentials to use with cloud KMS
NetBackup™ Security and Encryption Guide

Configuring proxy server credentials to use with cloud KMS

Using a proxy server with cloud KMS is optional.

NetBackup can use a proxy server to communicate with the cloud KMS endpoints.

  • HTTP and HTTPS proxy servers are supported.

    If you are using HTTPS proxy server, ensure the following:

    • The proxy server certificate includes all hostnames of the proxy server in the Subject Alternative Names (SAN) field of the server certificate.

    • The certificate contains valid CRL distribution point (CDP) endpoints, so that NetBackup can check certificate revocation status.

  • Only basic authentication is supported. Authentication methods such as Kerberos or NTLM are not supported.

You can use NetBackup web UI or nbkmscmd command to create proxy server credentials.

Refer to the NetBackup Commands Reference Guide to learn more about the nbkmscmd command.

Feedback

Was this page helpful?
Previous

Add a credential for cloud KMS

Next

Add a credential for proxy server

Feedback

Was this page helpful?