Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. Veritas NetBackup™ Security and Encryption Guide
  3. Security management in NetBackup
  4. About secure communication in NetBackup
Veritas NetBackup™ Security and Encryption Guide

About secure communication in NetBackup

This section provides information on various configuration options that are added for secure communication between NetBackup hosts.

NetBackup 8.1 hosts can communicate with each other only in a secure mode. NetBackup 8.1 hosts must have a Certificate Authority (CA) certificate and a host ID-based certificate for successful communication.

NetBackup uses Transport Layer Security (TLS) protocol for host communication where each host needs to present its security certificate and validate the peer host's certificate against the Certificate Authority (CA) certificate.

For more details, refer to the Read This First for Secure Communications document.

https://www.veritas.com/docs/DOC5332

Two new nodes on the NetBackup Administration Console provide secure communication settings: Host Management and Global Security Settings.

See About host management.

See Adding host ID to host name mappings.

See About global security settings.

See About secure communication settings.

See About disaster recovery settings.

Two new commands, nbhostmgmt and nbhostidentity, along with enhancements to nbcertcmd and nbseccmd, provide options to manage certificate deployment and other security settings.

If you have NetBackup 8.0 or earlier hosts in your environment, you can allow insecure communication with them.

See About insecure communication with 8.0 and earlier hosts.

Feedback

Was this page helpful?
Previous

Removing a third-party certificate configuration for the web server

Next

About the Security Management utilities

Feedback

Was this page helpful?