Please enter search query.
Search <book_title>...
NetBackup IT Analytics Data Collector Installation and Configuration Guide for Veritas NetBackup
Last Published:
2025-03-04
Product(s):
NetBackup IT Analytics (11.5)
- Introduction
- Configure a NetBackup IT Analytics Distributed Data Collector on a NetBackup Primary Server
- Overview
- Configure Data Collector on non-clustered NetBackup 10.4 and later primary server
- Configuration workflow for NetBackup 10.1.1, 10.2, 10.2.01, 10.3 or 10.3.0.1 on a non-clustered NetBackup primary server
- Configure Data Collector on non-clustered NetBackup 10.1.1, 10.2, 10.2.01, 10.3 or 10.3.0.1 primary server
- Configuration workflow for NetBackup versions lower than 10.1.1
- Configure Data Collector on NetBackup primary with version lower than 10.1.1
- Configure a Veritas NetBackup Data Collector Policy
- Veritas NetBackup Data Collector policy configuration prerequisites
- Create NetBackup Data Collector Role, Service Account, and API Key
- Add a Veritas NetBackup Data Collector policy
- Add/Edit NetBackup Primary Servers within the Data Collector policy
- Configuring file analytics in NetBackup Data Collector policy
- Installing the Data Collector software
- Introduction
- Considerations to install Data Collector on non-English systems
- Install Data Collector Software on Windows
- Install Data Collector software on Linux
- Deploy Data Collector in native Kubernetes environment
- Configure Data Collector manually for Veritas NetBackup
- Install Data Collector binaries on Windows (without configuration)
- Install Data Collector binaries on Linux host (without configuration)
- Override default Java Heap memory (XMX) value for Data Collector utilities
- Configure SSL
- SSL/TLS certificate configuration
- SSL implementation overview
- Obtain an SSL certificate
- Update the web server configuration to enable SSL on the Portal server
- Enable / Disable SSL for a Data Collector
- Enable / Disable SSL for emailed reports
- Test and troubleshoot SSL configurations
- Keystore file locations on the Data Collector server
- Import a certificate into the Data Collector Java keystore
- Keystore on the portal server
- Add a virtual interface to a Linux server
- Add a virtual / secondary IP address on Windows
- Centralized Data Collector for NetBackup - Prerequisites, Installation, and Configuration
- Overview
- Step-1: Choose operating system and complete prerequisites
- Step-2: HTTPS requirement
- Step-3: Add Data Collector on NetBackup IT Analytics Portal
- Step-4: Create NetBackup Data Collector Role, Service Account, and API Key
- Step-5: SSH/WMI
- Step-6: Install the Data Collector
- Step-7: Configure Data Collector
- Step-8: Verify the Data Collector is online from the Portal
- Step-9: Confirm that the Data Collector is updated
- Step-10: Configure the data collection policy
- Step-11: Confirm that the NetBackup data collection policy is collecting data
- Upgrading Data Collector Locally
- Overview
- Verification of upgrade bundle available on Data Collector server
- Upgrade the Upgrade Manager component
- Upgrade the Data Collector component which is the aptare.jar file
- Upgrade the Upgrade Manager and Data Collector components together
- Upgrade logs and upgrade related database views
- Resolve file lock issue on Windows host during Data Collector upgrade
- Clustering Data Collectors with VCS and Veritas NetBackup (RHEL)
- Clustering Data Collectors with VCS and Veritas NetBackup (Windows)
- Install and configure NetBackup IT Analytics Data Collector on MSCS environment
- Data Collector Policy Migration
- Pre-Installation setup for Veritas NetBackup appliance
- Pre-installation setup for Veritas Flex Appliance
- Data Collector Troubleshooting
- Resolving Data Collectors connections issues - Linux specific
- Resolving Data Collectors connections issues - Windows specific
- Portal upgrade performance issues
- Configuring web proxy updates
- Host resources troubleshooting
- Host resources: Check the status of the WMI proxy server
- Host resources: Post-Installation verification
- Host resources: Check host connectivity using standard SSH
- Host resources: Check host connectivity
- Host resources: Check host connectivity using Host Resource Configuration file
- Host resources: Generating host resource configuration files
- Host resources: Check the execution of a command on a remote server
- Host resources Data Collection
- Host resources: Collection in stand-alone mode
- Configuring parameters for SSH
- Identifying Windows file system access errors (File Analytics)
- Collect from remote shares (File Analytics)
- Adding a certificate to the Java keystore
- Override default Java Heap memory (XMX) value for Data Collector utilities
- Appendix A. Configure Appliances
- Appendix B. Load historic events
- Introduction
- Load Commvault Simpana events
- Load EMC Avamar events
- Load EMC NetWorker events
- Load HP Data Protector events
- Load IBM Spectrum Protect (TSM) events
- Load Oracle Recovery Manager (RMAN) events
- Load Veeam Backup & Replication events
- Load Veritas NetBackup events
- Load Veritas Backup Exec events
- Corrections in duplication of clients
- Cohesity
- Dell EMC NetWorker Backup & Recovery
- Appendix C. Firewall configuration: Default ports
- Appendix D. CRON Expressions for Policy and Report Schedules
- Appendix E. Maintenance Scenarios for Message Relay Server Certificate Generation
Linux Centralized Data Collector: SSH
Configure NetBackup sudo access for NetBackup data collection
Collection of NetBackup data using the SSH Collection method to a NetBackup Primary Server requires root privileges to run NetBackup commands.
If your security requirements require sudo access to provide temporary, elevated privileges, use the following instructions. NetBackup IT Analytics requires the use of passwordless sudo.
Create a Linux user to grant sudo access.
Modify the sudo Configuration. Depending on the version of Linux, either run the visudo command, or create a drop-in sudoers file in the correct directory to restrict the commands that this user can execute.
To modify the sudoers file
- Configure visudo to modify the sudoers file. visudo will use the editor specified in the $EDITOR variable, or vi, by default. Specify a preferred editor. For example, to use nano as your editor, execute the following:
export EDITOR=nano
- Once the preferred editor is configured, execute the following commands. Use visudo if available.
visudo -f /etc/sudoers.d/<username>
- Add the following lines to the sudoers file, substituting the name of the user you created for <username>:
Defaults:<username> !requiretty <username> ALL=(ALL) NOPASSWD: \ /usr/openv/netbackup/bin/admincmd/* ,\ /usr/openv/volmgr/bin/* ,\ /usr/openv/netbackup/bin/*
Or to further restrict access to NetBackup administrative commands, use the following:
Defaults:<username> !requiretty <username> ALL=(ALL) NOPASSWD: \ /usr/openv/netbackup/bin/admincmd/bpgetconfig ,\ /usr/openv/netbackup/bin/admincmd/bpcoverage ,\ /usr/openv/netbackup/bin/admincmd/bpdbjobs ,\ /usr/openv/netbackup/bin/admincmd/bpimagelist ,\ /usr/openv/netbackup/bin/admincmd/bperror ,\ /usr/openv/netbackup/bin/admincmd/bppllist ,\ /usr/openv/netbackup/bin/admincmd/bpretlevel ,\ /usr/openv/netbackup/bin/admincmd/bpplclients ,\ /usr/openv/netbackup/bin/admincmd/bpmedialist ,\ /usr/openv/netbackup/bin/admincmd/bpstulist ,\ /usr/openv/netbackup/bin/admincmd/nbdevquery ,\ /usr/openv/netbackup/bin/admincmd/nbauditreport ,\ /usr/openv/netbackup/bin/admincmd/nbstl ,\ /usr/openv/netbackup/bin/admincmd/nbstlutil ,\ /usr/openv/netbackup/bin/admincmd/bpstsinfo ,\ /usr/openv/netbackup/bin/admincmd/bpminlicense ,\ /usr/openv/volmgr/bin/vmquery ,\ /usr/openv/volmgr/bin/vmpool ,\ /usr/openv/volmgr/bin/vmglob ,\ /usr/openv/volmgr/bin/vmcheckxxx ,\ /usr/openv/volmgr/bin/vmoprcmd ,\ /usr/openv/volmgr/bin/tpconfig ,\ /usr/openv/netbackup/bin/bplist ,\ /usr/openv/netbackup/bin/nbsqladm ,\ /usr/openv/netbackup/bin/nboraadm
- Save the sudoers file.
Configure NetBackup Appliances for Data Collection
Create a new NetBackup administrator CLI user account, for example "aptare". Refer to Creating NetBackup administrator user accounts in the Veritas NetBackup™ Appliance Administrator's Guide.
Create a location for temporary files (e.g. /log/aptare/tmp).
maintenance-!> sudo bash root-!> mkdir -p /log/aptare/tmp
Assign read and write permissions to the folder for the CLI user account and nbusers group.
Refer to Overriding the NetBackup appliance intrusion prevention system policy in the Veritas NetBackup™ Appliance Security Guide.
maintenance-!> sudo bash root-!> chown -R aptare:nbusers /log/aptare
Create a .profile file in the
/home/nbusersdirectory.It is recommended to use a .profile that only sets TMPDIR for the CLI user created for collection.
For example:
if [ "${USER}" = "aptare" ] ; then TMPDIR=/log/aptare/tmp export TMPDIR fiOR
Use the advanced parameter NBU_SSH_TMPDIR. For available methods of configuring the TMPDIR environment variable.
Configure NetBackup Flex Appliances for Data Collection
To configure NetBackup Flex Appliances for data collection, you must first create a new user account on the Flex primary server and grant sudo access to the user account in /etc/sudoers.d and /mnt/nbdata/vxos/etc/sudoers.d, as described in the procedure below. You must also obtain the REST API key from the NetBackup UI.
- Open a SSH session to the NetBackup instance as an admin or root user to create an appadmin user.
- Create a local user account:
sudo useradd <username> sudo passwd <username>
- Grant sudo access to the local user account created above in
/etc/sudoers.d:Create
sudoersfile in/etc/sudoers.d, substituting the name of the user you created for <username>.sudo visudo -f /etc/sudoers.d/<username>
Add these permissions in the interactive editor.
To allows unrestricted access to all the permissions:
Defaults:<username> !requiretty <username> ALL=(ALL) NOPASSWD: \ /usr/openv/netbackup/bin/admincmd/* ,\ /usr/openv/volmgr/bin/* ,\ /usr/openv/netbackup/bin/*
Or to further restrict access to NetBackup administrative commands, use the following:
Defaults:<username> !requiretty <username> ALL=(ALL) NOPASSWD: /usr/openv/netbackup/bin/admincmd/bpgetconfig ,\ /usr/openv/netbackup/bin/admincmd/bpcoverage ,\ /usr/openv/netbackup/bin/admincmd/bpdbjobs ,\ /usr/openv/netbackup/bin/admincmd/bpimagelist ,\ /usr/openv/netbackup/bin/admincmd/bperror ,\ /usr/openv/netbackup/bin/admincmd/bpminlicense ,\ /usr/openv/netbackup/bin/admincmd/bppllist ,\ /usr/openv/netbackup/bin/admincmd/bpretlevel ,\ /usr/openv/netbackup/bin/admincmd/bpplclients ,\ /usr/openv/netbackup/bin/admincmd/bpmedialist ,\ /usr/openv/netbackup/bin/admincmd/bpstulist ,\ /usr/openv/netbackup/bin/admincmd/nbdevquery ,\ /usr/openv/netbackup/bin/admincmd/nbauditreport ,\ /usr/openv/netbackup/bin/admincmd/nbstl ,\ /usr/openv/netbackup/bin/admincmd/nbstlutil ,\ /usr/openv/netbackup/bin/admincmd/bpstsinfo ,\ /usr/openv/volmgr/bin/vmquery ,\ /usr/openv/volmgr/bin/vmpool ,\ /usr/openv/volmgr/bin/vmglob ,\ /usr/openv/volmgr/bin/vmcheckxxx ,\ /usr/openv/volmgr/bin/vmoprcmd ,\ /usr/openv/volmgr/bin/tpconfig ,\ /usr/openv/netbackup/bin/bplist ,\ /usr/openv/netbackup/bin/nbsqladm ,\ /usr/openv/netbackup/bin/nboraadm
Save and exit the interactive editor.
- Grant sudo access to the local user account created above in
/mnt/nbdata/vxos/etc/sudoers.d:Create
sudoersfile in/mnt/nbdata/vxos/etc/sudoers.d.sudo visudo -f /mnt/nbdata/vxos/etc/sudoers.d/<username>
Add these permissions in the interactive editor.
To allows unrestricted access to all the permissions:
Defaults:<username> !requiretty <username> ALL=(ALL) NOPASSWD: \ /usr/openv/netbackup/bin/admincmd/* ,\ /usr/openv/volmgr/bin/* ,\ /usr/openv/netbackup/bin/*
Or to further restrict access to NetBackup administrative commands, use the following:
Defaults:<username> !requiretty <username> ALL=(ALL) NOPASSWD: /usr/openv/netbackup/bin/admincmd/bpgetconfig ,\ /usr/openv/netbackup/bin/admincmd/bpcoverage ,\ /usr/openv/netbackup/bin/admincmd/bpdbjobs ,\ /usr/openv/netbackup/bin/admincmd/bpimagelist ,\ /usr/openv/netbackup/bin/admincmd/bperror ,\ /usr/openv/netbackup/bin/admincmd/bpminlicense ,\ /usr/openv/netbackup/bin/admincmd/bppllist ,\ /usr/openv/netbackup/bin/admincmd/bpretlevel ,\ /usr/openv/netbackup/bin/admincmd/bpplclients ,\ /usr/openv/netbackup/bin/admincmd/bpmedialist ,\ /usr/openv/netbackup/bin/admincmd/bpstulist ,\ /usr/openv/netbackup/bin/admincmd/nbdevquery ,\ /usr/openv/netbackup/bin/admincmd/nbauditreport ,\ /usr/openv/netbackup/bin/admincmd/nbstl ,\ /usr/openv/netbackup/bin/admincmd/nbstlutil ,\ /usr/openv/netbackup/bin/admincmd/bpstsinfo ,\ /usr/openv/volmgr/bin/vmquery ,\ /usr/openv/volmgr/bin/vmpool ,\ /usr/openv/volmgr/bin/vmglob ,\ /usr/openv/volmgr/bin/vmcheckxxx ,\ /usr/openv/volmgr/bin/vmoprcmd ,\ /usr/openv/volmgr/bin/tpconfig ,\ /usr/openv/netbackup/bin/bplist ,\ /usr/openv/netbackup/bin/nbsqladm ,\ /usr/openv/netbackup/bin/nboraadm
Save and exit the interactive editor.
- Obtain the REST API key from the NetBackup UI and copy it in the API key field. The API key field appears on Add Backup Server or Edit Backup Server popup that is displayed when you click Add or Edit on the Veritas NetBackup Data Collector Policy window.