About secure communication in NetBackup
This section provides information on various configuration options that are added for secure communication between NetBackup hosts.
NetBackup 8.1 hosts can communicate with each other only in a secure mode. NetBackup 8.1 hosts must have a Certificate Authority (CA) certificate and a host ID-based certificate for successful communication.
NetBackup uses Transport Layer Security (TLS) protocol for host communication where each host needs to present its security certificate and validate the peer host's certificate against the Certificate Authority (CA) certificate.
For more details, refer to the Read This First for Secure Communications document.
https://www.veritas.com/docs/DOC5332
Two new nodes on the NetBackup Administration Console provide secure communication settings: Host Management and Global Security Settings.
See Adding host ID to host name mappings.
See About global security settings.
See About secure communication settings.
See About disaster recovery settings.
Two new commands, nbhostmgmt and nbhostidentity, along with enhancements to nbcertcmd and nbseccmd, provide options to manage certificate deployment and other security settings.
If you have NetBackup 8.0 or earlier hosts in your environment, you can allow insecure communication with them.
See About insecure communication with 8.0 and earlier hosts.