Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Administrator's Guide
  5. Section IX. Managing security
  7. Configuring multiperson authorization
  9. Configure multiperson authorization
NetBackup™ Web UI Administrator's Guide

Configure multiperson authorization

The configuration of multiperson authorization for NetBackup operations is supported only from the NetBackup web UI. A user with the Administrator or the Security Administrator role can configure multiperson authorization for critical NetBackup operations.

To configure multiperson authorization for NetBackup operations

  1. On the left, select Security > multiperson authorization.
  2. At the top right, select the option Configure multiperson authorization.
  3. Go to Operations for multiperson authorization. Then select Edit.
  4. Select all or any of the following critical operations for which you want to configure multiperson authorization.

    • Images

      • Image expiry

      • Remove image hold

    • Security

      • Global security settings

      • Encryption key management

      • API keys

        Note:

        If multiperson authorization is enabled for API key operations, a ticket is generated. After the multiperson authorization ticket is approved, the user needs to execute the ticket using the Execute ticket option in the NetBackup web UI and then the required API key operation is executed.

        For NetBackup releases earlier than 10.5, if multiperson authorization is enabled, you cannot perform API key operations.

      • Malware scan host management

        Note:

        Starting with NetBackup 11.0, if multiperson authorization is enabled for this operation, a ticket is generated.

      • Protection

        • Policy management

          Note:

          Starting with NetBackup 11.0, if multiperson authorization is enabled for this operation, a ticket is generated. If there is an existing ticket for a policy that is pending for approval, you cannot perform any operations on the same policy until the existing ticket is either approved, rejected, canceled, or expired.

    • MSDP WORM

      • WORM retention lock removal

      • WORM configuration change

  5. Select Save.
  6. Configure the users to be exempted from multiperson authorization.

    Starting with 11.0, you can exempt users from multiperson authorization for specific operation and action for specific time frame.

  7. Configure email notifications that you want to send to approvers and other email recipients. You can specify additional email recipients to whom you want to send email notifications.

    Click Configure to configure the SMTP server for emails.

  8. Go to Schedules. Then select Edit.
  9. Specify when you want to expire and purge the multiperson authorization tickets.
  10. Select Save.
  11. Select Configure.

Feedback

Was this page helpful?
Previous

NetBackup operations that need multiperson authorization

Next

View multiperson authorization tickets

Feedback

Was this page helpful?