Previous  |  Next >  
Product: NetBackup System Administrator's Help  

Configuring Authentication on the Root Broker for Use with NetBackup

Configure the Root Broker using the NetBackup command, bpnbat located in directory /usr/openv/netbackup/bin/

  1. Shut down NetBackup on the master server and start the At daemon, then the Az daemon:
    To shut down NetBackup daemons, use
      NetBackup stop
      located in the goodies directory.
      To start the At daemon, enter /opt/VRTSat/bin/vxatd
      To start the At daemon, enter /opt/VRTSaz/bin/vrtsaz
  2. Allow the machines to communicate with one another:
    Note   Note    The steps below require a password that should not be a user or root password. The password must be at least five characters long, and match one another in both steps. However, it is not necessary to use the same password each time the two steps are run for a new machine in the domain.
    1. To add a machine locally to the private domain:
      2. In order for the NetBackup master servers, media servers, and clients to communicate, this machine needs to be added to the private database of the Authentication Broker or to the local disk by running the following command on the At server:

         bpnbat -AddMachine
         Does this machine use Dynamic Host Configuration Protocol (DHCP)? (y/n) n
         Authentication Broker: broker
         Authentication port[ Enter = default]: broker_port
         Name: machine_name
         Password: any_password
         Password: Re-enter password
         Operation completed successfully.
      Where:
      broker is the fully qualified name of the machine that will act as the Authentication Broker for this machine. In this case, since this machine is Root Broker + AB, enter the name of this machine.
      broker_port is a specified port number. To use the default At port number (2821), press Enter.
      machine_name is the fully qualified name of this machine.
      any_password may be a unique password (at least five characters long) used only for the purpose of registering this machine. However, the same password must be used in both this step, when registering the machine locally in the private domain, and the next step, when registering the machine, but not in the private domain.
    2. To create a credential for a machine:
      3. In order to log the machine into the specified Authentication Broker, enter the following command on the machine that needs to be logged in:

         bpnbat -loginmachine
         Does this machine use Dynamic Host Configuration Protocol (DHCP)? (y/n) n
         Authentication Broker: broker
         Authentication port[ Enter = default]: broker_port
         Name: machine_name
         Password: same password as in step a
         You do not currently trust the server: server_name 
      Do you wish to trust it? (y/n) y
         Operation completed successfully.
 ^ Return to Top Previous  |  Next >  
Product: NetBackup System Administrator's Help  
VERITAS Software Corporation
www.veritas.com