Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Steps to protect NetBackup
  4. Workflow to configure multiperson authorization for NetBackup operations
  5. Configure multiperson authorization
NetBackup and NetBackup Appliances Hardening Guide

Configure multiperson authorization

The configuration of multiperson authorization for NetBackup operations is supported only from the NetBackup web UI. A user with the Administrator or the Security Administrator role can configure multiperson authorization for critical NetBackup operations.

To configure multiperson authorization for NetBackup operations

  1. On the left, select Security > multiperson authorization.
  2. At the top right, select the option Configure multiperson authorization.
  3. Go to Operations for multiperson authorization. Then select Edit.
  4. Select all or any of the following critical operations for which you want to configure multiperson authorization.
    • Images

      • Image expiry

      • Remove image hold

    • Security

      • Global security settings

      • Encryption key management

      • API keys

        Note:

        If multiperson authorization is enabled for API key operations, a ticket is generated. After the multiperson authorization ticket is approved, the user needs to execute the ticket using the Execute ticket option in the NetBackup web UI and then the required API key operation is executed.

        For NetBackup releases earlier than 10.5, if multiperson authorization is enabled, you cannot perform API key operations.

    • MSDP WORM

      • WORM retention lock removal

      • WORM configuration change

  5. Select Save.
  6. Configure the users to be exempted from multiperson authorization.
  7. Go to Schedules. Then select Edit.
  8. Specify when you want to expire and purge the multiperson authorization tickets.
  9. Select Save.
  10. Select Configure.

Feedback

Was this page helpful?
Previous

RBAC roles and permissions for multiperson authorization

Next

Access codes

Feedback

Was this page helpful?