Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Troubleshooting Guide
  5. Troubleshooting procedures
  7. Troubleshooting problems with validation of the remote host
NetBackup™ Troubleshooting Guide

Troubleshooting problems with validation of the remote host

NetBackup uses Secure Socket Layer (SSL) to communicate securely with other NetBackup hosts. Unless the other host is 8.0 or earlier, NetBackup 8.1 always requires the communication to be secure. For this, all hosts that are setting up or accepting a connection validate the remote host against its details available with the primary server. The connection is dropped, if the host validation fails and this in turn can cause certain operations (like backup or restore) to fail.

To resolve the issues that arise because of host validation failures, do the following:

  • Check the logs pertaining to host validation failures.

    See Viewing logs pertaining to host validation.

  • Verify that the NetBackup web services are running on the primary server.

    See Troubleshooting problems with the NetBackup web services.

  • Verify that the NetBackup web server certificate is correctly deployed.

    See Troubleshooting problems with the NetBackup web server certificate.

  • Verify that the host can connect to the NetBackup web service on the primary server.

    See the 'About the communication between a NetBackup client located in a demilitarized zone and a primary server through an HTTP tunnel' topic from the NetBackup Security and Encryption Guide.

  • If the remote host is 8.0 or earlier, verify that insecure communication with such hosts is enabled.

    See Enabling insecure communication with NetBackup 8.0 and earlier hosts.

  • Verify if there are any host ID-to-host name mappings for the remote host that are pending for approval on the primary server.

    See Approving pending host ID-to-host name mappings.

  • If NetBackup software of the remote host was recently downgraded from 8.1 to an earlier version, ensure that host information is reset on the primary server.

    See the 'Resetting a NetBackup host attributes' topic from the NetBackup Security and Encryption Guide.

  • Verify that the host cache has updated information about the remote host.

    See Clearing host cache.

  • If the NetBackup web server is configured to use external CA-signed certificates, ensure that the host certificate is successfully enrolled with the appropriate primary server domain.

    For more information on the external CA support and certificate enrollment, refer to the NetBackup Security and Encryption Guide.

Feedback

Was this page helpful?
Previous

Determining if the PBX daemon or service is available

Next

Viewing logs pertaining to host validation

Feedback

Was this page helpful?