Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. Veritas NetBackup™ CloudPoint Install and Upgrade Guide
  5. Section I. CloudPoint installation and configuration
  7. Protecting assets with CloudPoint's agentless feature
  9. Granting password-less sudo access to host user account
Veritas NetBackup™ CloudPoint Install and Upgrade Guide

Granting password-less sudo access to host user account

CloudPoint requires a host user account to connect and perform operations on the host. You must grant password-less sudo access to the user account that you provide to CloudPoint. This is required for all the hosts where you wish to configure the agentless feature.

Note:

The following steps are provided as a general guideline. Refer to the operating system or the distribution-specific documentation for detailed instructions on how to grant password-less sudo access to a user account.

Perform the following steps on a host where you want to configure the agentless feature

  1. Verify that the host user name that you provide to CloudPoint is part of the wheel group.

    Log on as a root user and run the following command:

    # usermod -aG wheel hostuserID

    Here, hostuserID is the host user name that you provide to CloudPoint.

  2. Log out and log in again for the changes to take effect.

  3. Edit the /etc/sudoers file using the visudo command:

    # sudo visudo

  4. Add the following entry to the /etc/sudoers file:

    hostuserID ALL=(ALL) NOPASSWD: ALL

  5. In the /etc/sudoers file, edit the entries for the wheel group as follows:

    • Comment out (add a # character at the start of the line) the following line entry:

      # %wheel ALL=(ALL) ALL

    • Uncomment (remove the # character at the start of the line) the following line entry:

      %wheel ALL=(ALL) NOPASSWD: ALL

    The changes should appear as follows:

    ## Allows people in group wheel to run all commands
# %wheel ALL=(ALL) ALL

## Same thing without a password
%wheel ALL=(ALL) NOPASSWD: ALL

  6. Save the changes to the /etc/sudoers file.

  7. Log out and log on to the host again using the user account that you provide to CloudPoint.

  8. Run the following command to confirm that the changes are in effect:

    # sudo su

    If you do not see any prompt requesting for a password, then the user account has been granted password-less sudo access.

    You can now proceed to configure the CloudPoint agentless feature.

Feedback

Was this page helpful?
Previous

Prerequisites for the agentless configuration

Next

Configuring the agentless feature

Feedback

Was this page helpful?