Supported systems and access requirements — NetBackup IT Analytics 11.8 | Cohesity Documentation

Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist

Supported systems and access requirements — NetBackup IT Analytics 11.8 | Cohesity Documentation

Supported systems and access requirements

For specific prerequisites and configuration requirements, see the Cloud Data Collector information.

Data Collectors require the following privileges to access APIs and underlying details:

On Linux, root privileges for SSH
On Windows, administrator privileges for WMI.

Table: Data Collection Prerequisites

Vendor	Subsystems	Dev Mgr/API/CLI	Access Requirements	Ports	Notes
Amazon Web Services	S3 Bucket (Details and Usage) - Simple Storage Service (S3) for storage in the cloud EC2 Details - Elastic Cloud Compute (EC2) for computing services, much like virtual servers Billing Records - Usage and corresponding charges, by service	AWS Java SDK	Before a Data Collector can gain read-only access to retrieve data the following steps are required in Amazon Web Services (AWS) Configure an S3 Bucket to Receive Billing Reports. Activate AWS detailed billing. Select Cost Allocation Tags. Create an AWS IAM User and provide the mandatory privileges. Note: For mandatory privileges, see IT Analytics Data Collector Installation Guide for the Cloud >> Pre-Installation Setup for Amazon Web Services (AWS) >> Mandatory probe user privileges section. Generate Access Keys. Link AWS Accounts for Collection of Consolidated Billing Data.	https 443 for read-only access to the data	AWS reports are under Capacity Manager and Virtualization Manager.
Microsoft	Azure Virtual Machine Azure Storage Account Azure Billing Azure Backup	REST API	Prerequisite: Install the Azure Powershell client on a Windows computer. Execute Microsoft Azure Powershell as an administrator. Find your Tenant ID and Azure Subscription ID Register a new Application Create a Principle and assign Contributor role to the application. Find your Azure Application ID, Offer ID Application Password.	443	The Data Collector only supports Azure resources deployed with the Resource Manager model. Note: A maximum of 105 subscriptions can be selected in a policy.
OpenStack	OpenStack Swift (Juno10, TBC), SwiftStack v2.2		Keystone v2 Proxy path for Swift configuration files must be specified. Controller credentials that have access to tenants/projects. Swift proxy server credentials with super-user privileges.	35357 for Keystone Admin 5000 for Keystone Public 22 for SSH	If multiple proxies exist, IT Analytics uses only one. Capacity reports will reflect only one proxy. Configure the policy to use the address of the actual proxy server, not the server responsible for load balancing. Capacity data is collected from devices mapped to OpenStack nodes.
OpenStack	OpenStack Ceilometer	REST API	Keystone v2 Credentials that have admin access to tenants/projects.	35357 for Keystone Admin 5000 for Keystone Public 8777 for Ceilometer API Service 8774 for Compute
Google cloud platform	Virtual Machine Details - Secure and customizable compute service that lets you create and run virtual machines on Google's infrastructure. Storage Buckets (Details and Usage) - Cloud Storage is a service for storing your objects in Google Cloud. Billing Records - Usage and corresponding charges, by service.	REST API	Create a billing data access role . Create an IAM service account user and create key. Enable billing account access. Enable billing export. Enable the cloud API's. Grant access of each project to the service account.	443	Data collector policy requires service account email and private key.

Feedback

Was this page helpful?

Feedback

Was this page helpful?