Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Steps to protect Access Appliance
  4. About multifactor authentication
  5. Considerations when configuring multifactor authentication
NetBackup and NetBackup Appliances Hardening Guide

Considerations when configuring multifactor authentication

Some considerations that you need to remember before you configure multifactor authentication:

  • The Appliance administrator can see the status of all the users on the Settings > User management page.

  • If AD/LDAP server configuration is removed from the cluster without removing the AD/LDAP user's multifactor authentication configuration, the Appliance administrator may see stale entries for AD/LDAP users.

  • Multifactor authentication configuration for AD/LDAP users with no role is only possible after multifactor authentication enforcement.

  • A local administrator is a non AD/LDAP user.

  • Do not configure multifactor authentication if add node or delete node operations are in progress.

Perform the following steps to login to the Swagger REST APIs if multifactor authentication is configured for a particular user:

  • Provide username (for which multifactor authentication is configured) and password and generate token. A token of the type, mfa token, is generated.

  • Copy the token and paste it in the username field. Provide the OTP received in the authentication app in the password field, and enter mfa in the token type field.

  • A bearer token is generated for that user. This token should be provided in the Authorize tab with the format as: Bearer <bearer token>.

Feedback

Was this page helpful?
Previous

About multifactor authentication

Next

Configuring multifactor authentication for your user account

Feedback

Was this page helpful?