NetBackup™ Web UI Administrator's Guide

Last Published:
Product(s): NetBackup (9.0.0.1, 9.0)
  1. Introducing the NetBackup web user interface
    1.  
      About the NetBackup web UI
    2.  
      Terminology
    3.  
      Sign in to the NetBackup web UI
    4.  
      Sign out of the NetBackup web UI
  2. Section I. Monitoring and notifications
    1. Monitoring NetBackup
      1.  
        The NetBackup dashboard
    2. Managing jobs
      1.  
        Monitoring jobs
      2.  
        Jobs: canceling, suspending, restarting, resuming, deleting
      3.  
        Filter jobs in the job list
    3. Notifications
      1.  
        About notifications
      2.  
        Viewing notifications
      3.  
        Modify or disable NetBackup event notifications in the web UI
      4.  
        About configuring automatic notification cleanup tasks
      5. Send email notifications for job failures
        1.  
          Status codes that generate alerts
  3. Section II. Managing security
    1. Managing role-based access control
      1.  
        First-time sign in to a NetBackup master server from the NetBackup web UI
      2.  
        Authorized users
      3.  
        About role-based access control (RBAC) in NetBackup
      4. Configuring RBAC
        1.  
          Add AD or LDAP domains
        2.  
          Default RBAC roles
        3.  
          Add a custom RBAC role
        4.  
          Edit or remove a role a custom role
        5.  
          View users in RBAC
        6.  
          Add a user to a role (non-SAML)
        7.  
          Add a user to a role (SAML)
        8.  
          Remove a user from a role
      5. Role permissions
        1. Global > NetBackup management
          1.  
            NetBackup Web Management Console Administration
          2.  
            Access hosts
          3.  
            Data classification
          4.  
            Email notifications
          5.  
            Event logs
          6.  
            NetBackup hosts
          7.  
            Image sharing
          8.  
            NetBackup backup images
          9.  
            Jobs
          10.  
            Licensing
          11.  
            Media server
          12.  
            Remote master server certificate authority
          13.  
            Resiliency
          14.  
            Resource limits
          15.  
            Retention levels
          16.  
            Servers > Trusted master servers
          17.  
            Cloud providers
          18.  
            CloudPoint servers
          19.  
            WebSocket servers
        2.  
          Global > Protection
        3. Global > Security
          1.  
            Access control
          2.  
            Security events
          3.  
            Certificate management
          4.  
            Disaster recovery passphrase
          5.  
            Identity provider configuration
          6.  
            Key Management Services (KMS)
          7.  
            Passphrase constraints
          8.  
            Global security settings
          9.  
            Trust versions
          10.  
            User sessions and authentication
        4. Global > Storage
          1.  
            Cloud storage
          2.  
            Disk pools
          3.  
            Storage Key Management Services
          4.  
            Storage servers
          5.  
            Storage units
          6.  
            Tape media
          7.  
            Replication-capable target storage servers
        5.  
          Assets
        6.  
          Protection plans
        7.  
          Credentials
      6. Manage access
        1.  
          Manage the permissions for an area of the web UI
        2.  
          View access definitions
      7. Configure an external certificate for the NetBackup web server
        1.  
          Update or renew the external certificate for the web server
        2.  
          Remove the external certificate configured for the web server
    2. Security events and audit logs
      1.  
        View security events and audit logs
      2. About NetBackup auditing
        1.  
          User identity in the audit report
        2.  
          Audit retention period and catalog backups of audit records
        3.  
          Viewing the detailed NetBackup audit report
      3.  
        Send audit events to system logs
    3. Managing security certificates
      1.  
        About security management and certificates in NetBackup
      2.  
        NetBackup host IDs and host ID-based certificates
      3. Managing NetBackup security certificates
        1.  
          Reissue a NetBackup certificate
        2.  
          Managing NetBackup certificate authorization tokens
      4. Using external security certificates with NetBackup
        1.  
          View external certificate information for the NetBackup hosts in the domain
    4. Managing user sessions
      1.  
        Sign out a NetBackup user session
      2.  
        Unlock a NetBackup user
      3.  
        Configure when idle sessions should time out
      4.  
        Configure the maximum of concurrent user sessions
      5.  
        Configure the maximum of failed sign-in attempts
      6.  
        Display a banner to users when they sign in
    5. Managing master server security settings
      1.  
        Certificate authority for secure communication
      2.  
        Disable communication with NetBackup 8.0 and earlier hosts
      3.  
        Disable automatic mapping of NetBackup host names
      4.  
        About NetBackup certificate deployment security levels
      5.  
        Select a security level for NetBackup certificate deployment
      6.  
        Set a passphrase for disaster recovery
      7. About trusted master servers
        1.  
          Add a trusted master server
        2.  
          Remove a trusted master server
    6. Creating and managing API keys for users (Administrators)
      1.  
        About API keys
      2.  
        Add an API key or view API key details
      3.  
        Edit or delete API keys
    7. Adding and managing your API key (Users)
      1.  
        Add an API key or view your API key details
      2.  
        Edit or delete your API key
      3.  
        Use an API key with NetBackup REST APIs
    8. Configuring authentication options
      1.  
        Sign-in options for the NetBackup web UI
      2. Configure user authentication with smart cards or digital certificates
        1.  
          Edit the configuration for smart card authentication
        2.  
          Add or delete a CA certificate that is used for smart card authentication
        3.  
          Disable or temporarily disable smart card authentication
      3.  
        About Single Sign-On (SSO) configuration
      4. Configure NetBackup for Single Sign-On (SSO)
        1.  
          Configure the Java KeyStore
        2.  
          Add and enable the IDP configuration
        3.  
          Enroll the NetBackup master server with the IDP
        4.  
          Manage an IDP configuration
        5.  
          Video: Configure Single Sign-On in NetBackup
      5. Troubleshooting SSO
        1.  
          Redirection issues
        2.  
          Unable to sign in due to authorization-related issues
    9. Managing hosts
      1.  
        View NetBackup host information
      2.  
        Approve or add mappings for a host that has multiple host names
      3.  
        Remove mappings for a host that has multiple host names
      4.  
        Reset a host's attributes
  4. Section III. Managing storage and backups
    1. Configuring storage
      1.  
        About storage configuration
      2.  
        Create a Media Server Deduplication Pool (MSDP) storage server
      3.  
        Create a Cloud (Cloud Catalyst), OpenStorage, or AdvancedDisk storage server
      4.  
        Create a disk pool
      5.  
        Create a storage unit
      6.  
        Create a universal share
      7.  
        Using image sharing from the NetBackup Web UI
      8.  
        Troubleshooting storage configuration
      9.  
        Troubleshooting universal share configuration issues
      10.  
        Creating a cloud recovery host for image sharing
    2. Managing protection plans
      1.  
        Create a protection plan
      2.  
        Edit or delete a protection plan
      3.  
        Subscribe an asset or an asset group to a protection plan
      4.  
        Unsubscribe an asset from a protection plan
      5.  
        View protection plan overrides
      6.  
        About Backup Now
      7.  
        About a NetBackup classic policy
      8.  
        About policy management in the NetBackup web UI
    3. Usage reporting and capacity licensing
      1.  
        Track backup data size on your master servers
      2.  
        Configure the servers list for usage reporting
      3.  
        Scheduling reports for capacity licensing
      4.  
        Other configuration for incremental reporting
      5.  
        Troubleshooting failures for nbdeployutil and incremental reporting
  5. Section IV. Veritas Resiliency Platform
    1. Managing Resiliency Platforms
      1.  
        About Resiliency Platform in NetBackup
      2.  
        Understanding the terms
      3. Configuring a Resiliency Platform
        1.  
          Add a Resiliency Platform
        2.  
          Configuring a third-party CA certificate
        3.  
          Editing or deleting a Resiliency Platform
        4.  
          Viewing the automated or not-automated VMs
      4.  
        Troubleshooting NetBackup and Resiliency Platform issues
  6. Section V. Managing credentials
    1. Managing credentials
      1.  
        About credential management in NetBackup
      2.  
        Add a credential in NetBackup
      3.  
        Edit a credential
      4.  
        Delete a credential
  7. Troubleshooting the NetBackup Web UI
    1.  
      Tips for accessing the NetBackup web UI
    2.  
      If a user doesn't have the correct permissions or access in the NetBackup web UI
    3. Unable to add AD or LDAP domains with the vssat command
      1.  
        Connection cannot be established with the AD or the LDAP server
      2.  
        User credentials are not valid
      3.  
        An incorrect user base DN or group base DN was provided
      4.  
        Multiple users or groups exist with the same name under user base DN or group base DN
      5.  
        User or group does not exist
    4.  
      Unable to validate the user or group

Add a custom RBAC role

Create a custom RBAC role if you want to manually define the permissions and the access that users have to workload assets, protection plans, or credentials.

Note: You can only use the web UI to configure access to workloads, protection plans, and credentials when you first create the custom role. If you want to change those settings after the role is created, you must recreate the role. Or, add an additional role that has the necessary permissions. You can also use the NetBackup APIs to update the custom role.

Note: Veritas reserves the right to update the RBAC permissions for default roles in future releases. Any revised permissions are automatically applied to users of these roles when NetBackup is upgraded. Any copies of default roles (or any custom roles that are based on default roles) are not automatically updated.

To add a custom RBAC role

  1. On the left, select Security > RBAC and click Add.
  2. Select the type of role that you want to create.

    You can make a copy of a default role that contains all the preconfigured permissions and settings for that type of role. Or, select Custom role to manually configure all the permissions for a role.

  3. Provide a Role name and a description.

    For example, you may want to indicate that role is for any users that are backup administrators for a particular department or region.

  4. On the Permissions card, click Assign.

    See Role permissions.

    The permissions that you select determine the other settings that you can configure for the role.

    If you select a default role type, certain permissions are enabled only if they are required for that type of role. (For example, the Storage Administrator does not require permissions for protection plans. The Microsoft SQL Server Administrator requires credentials.)

    • The Workloads card is enabled when you select Asset permissions.

    • The Protection plans card is enabled when you select Protection plans permissions.

    • The Credentials card is enabled when you select Credentials permissions.

  5. Configure the permissions for the role.

    See Role permissions.

  6. On the Select users card, click Assign.
  7. When you are done configuring the role, click Save.