Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Top recommendations to improve your NetBackup and NetBackup appliances security posture
  4. Enabling catalog protection
NetBackup and NetBackup Appliances Hardening Guide

Enabling catalog protection

Cohesity recommends that you protect NetBackup catalogs with dedicated policies for disaster recovery purposes. Failure to back up the NetBackup primary catalog may result in lengthy reconstruction activities in the event of a site disaster, hardware failure, or malicious attack. Two critical components should be protected: the NetBackup primary server catalog and the Media Server Deduplication Pool (MSDP) catalog.

For immutable storage, you can also create shadow copies of the catalog with the deduplication shell.

How to enable catalog backups:

  • Flex Appliance

    For primary and media server instances, follow the same steps as NetBackup.

    See Protecting the MSDP catalog on a WORM storage server.

  • NetBackup Appliance

    Follow the same steps as NetBackup.

  • NetBackup

    See Guidelines for managing the primary server NetBackup catalog.

    See About protecting the MSDP catalog.

Feedback

Was this page helpful?
Previous

Enabling encryption

Next

Enabling malware scanning and anomaly detection

Feedback

Was this page helpful?