Auditing enhancements
This release of NetBackup includes several auditing operation enhancements. You can view the audit records using the nbauditreport command with an appropriate - ctgy option value on a NetBackup master server. You can also view audit records using NetBackup OpsCenter.
For more details about the nbauditreport command, see the NetBackup Commands Reference Guide.
Restore operations and browse image content operations
Restore operations and browse image content operations are audited and logged with the appropriate user identity. These operations are those that are initiated through a NetBackup graphical user interface, API, or one of the following commands: bplist, bprestore, or nbrestorevm. Enter the nbauditreport - ctgy DATAACCESS command on a NetBackup master server to view these audit records.
Storage lifecycle policy (SLP) operations
Successful attempts to create, modify, or delete a storage lifecycle policy (SLP) are audited and logged when they are initiated through a NetBackup graphical user interface, API, or the nbstl command. Additionally, attempts to activate or suspend an SLP from the NetBackup Administration Console are audited and logged. Use the command nbauditreport - ctgy SLP on a NetBackup master server to view SLP audit records.
Note:
Activating and suspending an SLP using the nbstlutil command are not audited. These operations are audited only when they are initiated from a NetBackup graphical user interface or API
Asset and asset group operations
Deleting an asset, such as a vCenter server or a virtual machine, as part of the POST /asset-cleanup process in the Asset Database API, is audited and logged. Use the command nbauditreport - ctgy ASSET on a NetBackup master server to view these audit records.
Also, creating, modifying, or deleting an asset group as well any action on an asset group for which a user is not authorized is audited and logged. Use the command nbauditreport - ctgy ASSETGROUP on a NetBackup master server to view asset group audit records.