Select a security level for certificate deployment
NetBackup offers several security levels for the certificate deployment. The security level determines what security checks the Certificate Authority (CA) performs before it issues a certificate to a NetBackup host. The level also determines how frequently the Certificate Revocation List (CRL) is refreshed on the host.
For more details on security levels, certificate deployment, and the CRL, see the NetBackup Security and Encryption Guide.
To select a security level for certificate deployment
- At the top, click Settings > Global security.
- Click Secure communication.
Certificates are deployed on hosts during installation, after the host's administrator confirms the master server fingerprint. The security level determines if an authorization token is required or not for a host.
Very high
NetBackup requires an authorization token for every new certificate request.
High (Default)
NetBackup does not require an authorization token if the host is known to the master server, which means the host appears in a NetBackup configuration file, the EMM database, a backup policy, or the host is a legacy client.
See "About certificate deployment security levels" in the NetBackup Security and Encryption Guide.
Medium
NetBackup issues certificates without an authorization token if the master server can resolve the host name to the IP address from which the request was originated.
- Click Save.