ECA_PRIVATE_KEY_PATH for NetBackup servers and clients
The ECA_PRIVATE_KEY_PATH option specifies the file path to the private key for the external CA-signed certificate of the host.
This option is mandatory for file-based certificates.
If the private key of the certificate is encrypted, you should specify the ECA_KEY_PASSPHRASEFILE option.
See ECA_KEY_PASSPHRASEFILE for NetBackup servers and clients.
NetBackup supports PKCS #1 and PKCS #8 formatted private keys that are either plain text or encrypted. These may either be PEM or DER encoded. However, if it is PKCS #1 encrypted, it must be PEM encoded.
For encrypted private keys, NetBackup supports the following encryption algorithms:
DES, 3DES, and AES if the private key is in the PKCS #1 format
DES, 3DES, AES, RC2, and RC4 if the private key is in the PKCS #8 format
Note:
You should not specify the ECA_PRIVATE_KEY_PATH option if Windows certificate store is specified for the ECA_CERT_PATH option.
Table: ECA_PRIVATE_KEY_PATH information
Usage | Description |
|---|---|
Where to use | On NetBackup servers or clients. |
How to use | Use the nbgetconfig and the nbsetconfig commands to view, add, or change the option. For information about these commands, see the NetBackup Commands Reference Guide. Use the following format: ECA_PRIVATE_KEY_PATH = Path to the private key of the external certificate For example: If you use this option on a Flex Appliance application instance, the path must be |
Equivalent Administration Console property | No equivalent exists in the NetBackup Administration Console host properties. |