Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. NetBackup™ Web UI Administrator's Guide
  5. Section I. Managing security
  7. Managing role-based access control
  9. Role permissions
  11. Global > Security
  13. Certificate management

Certificate management

The certificate management permissions allow users to manage the NetBackupcertificate authorities and certificates and to manage how NetBackup uses any external certificate authorities.

NetBackup certificate authority

The NetBackup certificate authority permissions allow users to manage the process of migrating the NetBackup Root CA to a higher key strength.

Table: NetBackup certificate authority

Operation

Description

Manage access

See Manage access.

Migrate CA

View and migrate the NetBackup Root CA to 2048-bit key strength or higher.

View hosts migrate CA

View the NetBackup hosts that are not yet migrated (pending) to the 2048-bit key strength or higher NetBackup Root CA.

External certificates

The external certificates permissions allow users to manage how NetBackup uses certificates from an external certificate authority. Configuration for external certificates is only available from the NetBackup APIs. See the NetBackup Security APIs.

Note:

To view external certificates in the NetBackup web UI, a user must have NetBackup certificates > View.

Table: RBAC permissions for external certificates

Operation

Description

Create

Associate the external certificate details with the host ID of the host.

Delete

Removes the association of the host ID to the external certificate.

Manage access

See Manage access.

Reset certificate

Resets the values of the external certificate except the subject. The certificate fields are populated again during certificate enrollment.

NetBackup certificates

NetBackup certificates permissions allow users to view and manage NetBackup security certificates. Note that permissions for NetBackup tokens are separate.

Table: NetBackup certificates

Operation

Description

View

View the details of the NetBackup security certificates and view any external certificates that NetBackup hosts use.

Manage access

See Manage access.

Dissociate NetBackup security certificates

Dissociates the NetBackup host name from the certificate it is currently associated with.

Revoke

Revoke NetBackup security certificates.

NetBackup security tokens

Permissions for NetBackup security tokens allow users to view and manage NetBackup security tokens. Note that permissions for NetBackup certificates are separate.

Table: RBAC permissions for NetBackup security tokens

Operation

Description

View

View all NetBackup security tokens.

Create

Create a NetBackup security token.

Delete

Delete a NetBackup security token or cleanup expired tokens.

Manage access

See Manage access.

Feedback

Was this page helpful?
Previous

Security events

Next

Disaster recovery passphrase

Feedback

Was this page helpful?