Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Commands Reference Guide
  3. Appendix A. NetBackup Commands
  4. nbfp
NetBackup™ Commands Reference Guide

Name

nbfp — resets the file permissions of the NetBackup installation directory to the default values

SYNOPSIS

For UNIX

nbfp --upgrade

nbfp--verify [--path=path1 [path2...pathn]] [--exclude_path=path1 [path2...pathn]] [--exclude_large_dirs] [--silent] [--verbose] [--json]

nbfp --fix [--path=path1 [path2...pathn]] [--exclude_path=path1 [path2...pathn]] [--exclude_large_dirs] [--silent] [--verbose] [--json]

For Windows

nbfp -silent

nbfp -restore [file]

On UNIX systems, the directory path to this command is /usr/openv/netbackup/bin/goodies/

On Windows systems, the directory path to this command is install_path\NetBackup\bin\goodies\

DESCRIPTION

The nbfp command resets the file permissions of the NetBackup installation directory to the default values.

On NetBackup clustered master server, make sure that you run this command on all nodes of cluster to reset of permissions on all nodes. On the active node, make sure that shared disk is online before you run nbfp.

OPTIONS

--exclude_large_dirs

Use this option to skip large directories, such as the db/images directory, from verify or fix operations. This optional option only applies to UNIX or Linux platforms.

--exclude_path=path1 [path2...pathn]

Use this option to skip the specified paths from verify or fix operations. Space-separated values are accepted. For permanent exclusion, specify each path on a separate line in the /usr/openv/netbackup/bin/goodies/Nbfp.Excluded.Paths file. This optional option only applies to UNIX or Linux platforms.

--fix

This option resets file permissions to the defaults. This option applies only to UNIX or Linux platforms.

--json

Use this option with the --verify option to generate JSON-formatted output. The output includes the total mismatch count, the logfile_path for reference, and detailed information about each file-level permission mismatch. This optional option only applies to UNIX or Linux platforms.

--path=path1 [path2...pathn]

Use this option to perform the verify or fix operation on the path that is specified. Space-separated values are accepted. This optional option only applies to UNIX or Linux platforms.

-restore [file]

Restores the permissions of the NetBackup installation directory as specified in the file. The specified file must be one of the backup files that is saved in the install_path\NetBackup\var\nbfp directory. This option only applies to Windows platforms.

If the file is not specified, the permissions are restored based on the latest backup file in the install_path\NetBackup\var\nbfp directory.

-silent

Skips the user confirmation. This option only applies to Windows platforms.

--silent

Use this option to perform the verify or fix operations without any console output. This optional option only applies to UNIX or Linux platforms.

--upgrade

Changes the permissions of files and VxUL logs to the more restrictive settings.

--verify

This option verifies the file permissions and lists the violations that are found as follows:

  • M: The mode differs.

  • U: The user ownership differs.

  • G: The group ownership differs.

  • missing: A mandatory file is not found.

  • PATH: The file path where the permissions are differs.

This optional option only applies to UNIX or Linux platforms.

--verbose

Use this option with verify or fix operations to enable verbose logging and detailed permission mismatch information on the console. This optional option only applies to UNIX or Linux platforms.

Feedback

Was this page helpful?
Previous

nbfirescan

Next

nbftadm

Feedback

Was this page helpful?