Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Steps to protect Flex Appliance
  4. Managing multiperson authorization
  5. Terminology
NetBackup and NetBackup Appliances Hardening Guide

Terminology

  • Request - A multiperson authorization request to perform a critical operation.

  • Requester - A user who wants to perform a critical operation that requires multiperson authorization.

  • Approver - An individual who reviews and allows an operation that requires multiperson authorization by approving a request.

  • Exempted user - A user who does not need multiperson authorization for operations except the following:

    • To modify multiperson authorization configuration

    • To modify security properties

    This eliminates the necessity for any approvals. However, it must be used with caution. If the exempted user account is hacked, the multiperson authorization process can be of no use as it is bypassed for this user. For additional security, it is recommended that there are no exempted users.

    Note:

    Exempted users are currently supported only for SED operations.

  • Expiration period - It is a configurable option that defines the duration for which a multiperson authorization request can be in the Pending state. A request expires if it is in the Pending state for more than the configured expiry period.

    Expiration period can vary from minimum 48 hours to 168 hours.

  • Deletion period - It is a configurable option that defines the period (in days) after which requests will be deleted when no action is performed on them.

    Deletion period can range from 7 to 180 days..

Feedback

Was this page helpful?
Previous

Managing multiperson authorization

Next

Multiperson authorization process workflow

Feedback

Was this page helpful?