Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Security Administrator's Guide
  5. Managing host mappings and certificates
NetBackup™ Web UI Security Administrator's Guide

You can view and revoke certificates and view information on the Certificate Authority (CA). More detailed information about certificate management, certificate deployment, and the Certificate Management utility is available in the NetBackup Security and Encryption Guide. To reissue a token for a host, see:

See Reissue a certificate when a host's certificate is no longer valid.

View a certificate

To view a certificate

  1. On the left, select Security > Certificates.

    The list of certificates displays for the master server.

  2. To view additional certificate details for a host, click on a host name.

When you revoke a NetBackup host ID-based certificate, NetBackup revokes any other certificates for that host. NetBackup ceases to trust the host, and it can no longer communicate with the other NetBackup hosts.

You can revoke a host ID-based certificate under various conditions. For example, if you detect that client security has been compromised, if a client is decommissioned, or if NetBackup is uninstalled from the host. A revoked certificate cannot be used to communicate with master server web services.

See "About revoking host ID-based certificates" in the NetBackup Security and Encryption Guide.

Security best practices suggest that the NetBackup security administrator explicitly revoke the certificates for any host that is no longer active, regardless of whether the certificate is still deployed on the host, or whether it has been successfully removed from the host.

Note:

Do not revoke a certificate of the master server. If you do, NetBackup operations may cease.

  1. On the left, select Security > Certificates.
  2. Click on the host name that is associated with the certificate that you want to revoke.
  3. Click Revoke certificate > Yes.

For secure communication with the master server or Certificate Authority, a host's administrator must add the CA certificate to an individual host's trust store. The master server administrator must give the fingerprint of the CA certificate to the administrator of the individual host.

To view the Certificate Authority details and fingerprint

  1. On the left, select Security > Hosts.
  2. At the top, click View Certificate Authority.
  3. Find the Fingerprint information and click Copy to clipboard.
  4. Provide this fingerprint information to the host's administrator.

Feedback

Was this page helpful?
Previous

Reset a host's attributes

Next

Feedback

Was this page helpful?