• Become a portal pro
• Download
• Print
• My Downloads ()

• Support
• Technical Documentation
• NetVault 13.0.2
• NetVault 13.0.2 - Administration Guide for Managed Service Providers

NetVault 13.0.2 - Administration Guide for Managed Service Providers

Table of Contents  

Introduction

About Quest NetVault About this document Target audience Recommended additional reading

Getting started

About deploying NetVault About NetVault components Starting or stopping the NetVault Service Enabling Web Service over HTTP or HTTPS Understanding Managed Service Provider

About user and roles Registering tenant

Logging in to NetVault Overview of NetVault WebUI Navigation pane Quitting NetVault Workflow in MSP environment

Prerequisites MSP administrator workflow

Using the configuration wizard Monitoring the NetVault Server Sorting records in NetVault WebUI Customizing tables in NetVault WebUI

Filter options

About NetVault REST APIs

Prerequisites for deploying REST APIs

Configuring clients

About NetVault Clients

Role-based access for NetVault Clients

Installing software from WebUI (push installation)

About push installation Prerequisites Managing package stores

Configuring a package store Modifying a package store Removing a package store

Performing push installations

File format for specifying deployment targets

Monitoring deployment tasks Managing deployment tasks

Retrying failed deployment tasks Canceling a deployment task Cloning a deployment task

Adding clients

Adding a client to the NetVault Server Adding multiple clients About firewall settings

Firewall filtering rules Firewall configuration example

Locating a client Checking communication through a firewall Removing a client from the list of available clients

Managing clients

Viewing client details Setting client description Installing plug-ins

Role-based access to install plug-ins

Checking for upgrades Installing a product license file

Role-based access to install product license file

Checking client access Removing plug-ins Removing a client from the server

Managing client groups

About client groups Creating a client group Viewing existing client groups Modifying a client group Removing a client group

Managing catalog search

About catalog search

Prerequisites

Configuring catalog search Relocating the catalog search database directory

Changing the NetVault Catalog Database directory on a Windows-based machine Migrating NetVault Catalog Server to different Windows-based client machine Changing the NetVault Catalog Database directory on a Linux-based machine

Modifying catalog search Disabling catalog search Upgrading catalog search Removing catalog search Displaying Status of Catalog Search

Configuring storage devices

About storage devices

Role-based storage device configuration

SAN considerations Quest DR Series systems

About Quest DR Series systems Quest DR Series system prerequisites Adding a Quest DR Series system

Adding a Quest DR Series appliance Creating a container Adding a container as a media

Quest QoreStor

Adding a container as a Media for QoreStor

Adding a container for QoreStor from the Manage Devices page Adding a container from the Quest QoreStor page

NetVault SmartDisk

About NetVault SmartDisk Adding a NetVault SmartDisk Migrating savesets and backup jobs from NetVault SmartDisk to QoreStor

Migrating savesets and backup jobs

EMC Data Domain Systems

About EMC Data Domain Systems Data Domain System prerequisites Adding a Data Domain System DD Boost commands

Snapshot Array Manager

Supported Storage Array Manager Prerequisites Adding Snapshot Array Manager

Virtual Tape Libraries

About Virtual Tape Library

Direct-to-cloud support

Virtual Tape Library considerations Creating and adding a Virtual Tape Library Re-adding a previously created VTL

Virtual standalone drives

About virtual standalone drive Creating and adding a virtual standalone drive

Shared Virtual Tape Libraries

About Shared Virtual Tape Libraries SVTL considerations SVTL prerequisites Creating and adding an SVTL Re-adding a previously created SVTL

Physical tape devices

Prerequisite

Changing the default Drive Transfer Buffer Size option

Adding a standalone tape drive Adding a tape library

Storage tiers

Creating a storage tier Editing a storage tier Removing a storage tier

Backing up data

About backing up data Secondary Copy Snapshot-based backups Backup retirement About NetVault Sets Backup and recovery strategy Creating backup jobs Creating Schedule Sets

Scheduling methods and options for non-repeating jobs Scheduling methods and options for repeating jobs

Creating Target Sets

Selecting the device Specifying media options Configuring media sharing options

Creating Source Sets for backup jobs Creating Backup Advanced Options Sets

Setting backup retirement options Specifying additional options Creating a Secondary Copy Configuring pre- and post script options for backup jobs Configuring user-defined events for backup jobs

Managing sets

Modifying a set Copying a set Deleting a set

Managing policies

About policies

Role-based access to manage policy

Creating a policy Viewing existing backup policies Viewing job status of policy jobs Modifying a backup policy

Modifying jobs in a backup policy Modifying clients in a backup policy Modifying events in a backup policy

Quiescing a backup policy Deleting a backup policy

Restoring data

About restoring data

Role-based actions to restore jobs

Creating restore jobs Restoring data using an existing Restore Selection Set Searching for files in savesets Viewing media list Creating Source Sets for restore jobs Creating Restore Advanced Options Sets

Setting restore type Specifying additional options Configuring pre- and post -scripts for restore jobs Configuring user-defined events for restore jobs

Managing online backup indexes

About managing online indexes Manually deleting online indexes Loading offline indexes Manually compressing online indexes Uncompressing online indexes

Managing Snapshots

Restoring snapshots Setting expiry for Snapshots Mounting Snapshots Unmounting Snapshots

Managing NetVault dashboard

About NetVault dashboard

Role-based access for NetVault Dashboard

Viewing NetVault dashboard

Configuring Dashboard Managing Dashboard Adding Dashboard

Sharing dashboard Cloning dashboard Deleting dashboard

Managing a widget on NetVault dashboard

Adding Widgets Positioning Widgets Widget filter options

Managing jobs

About Managing jobs

Job activity capabilities

Viewing job activity Viewing job calendar Managing jobs

Running a job immediately Aborting a job Stopping a job Restarting a job Placing a job on hold Resuming a job Determining the reason for "waiting for media" status Viewing log messages for a job Viewing and managing a job Monitoring job progress Clearing job errors and warnings Removing a job schedule

Managing job definitions

Viewing job definitions Editing job definitions Deleting job definitions Adding a non-policy job to a policy

Viewing job history

Monitoring logs

About NetVault logs

Role-based access for monitoring logs

Viewing log messages Downloading logs Exporting logs Manually purging the log messages Setting up a user-defined log event Removing a user-defined log event Searching the knowledge base

Managing storage devices

Role-based access to manage storage devices Monitoring device activity Managing disk-based storage devices in list view

Viewing disk device details Managing a Quest DR Series system, QoreStor, or Data Domain system

Viewing device details Viewing cleaner statistics Starting or stopping cleaner Managing device users Managing a container Managing storage groups Removing Quest DR Series system Removing QoreStor

Checking the status of a disk-based storage device Changing the status of a disk-based storage device Scanning a disk-based storage device Removing all savesets from a disk-based storage device Removing a disk-based storage device

Managing disk-based storage devices in tree view

Viewing disk device details Checking the status of a disk-based storage device Changing the status of a disk-based storage device Setting storage properties for a disk-based storage device Scanning a disk-based storage device Removing a disk-based storage device

Managing the Snapshot Array Manager

Modifying the Snapshot Array Manager settings Changing the user credentials for Snapshot Array Manager Changing the status of Snapshot Array Manager Removing the Snapshot Array Manager

Managing tape libraries in list view

Viewing tape library details Opening and closing library door Opening and closing entry/exit ports Unloading or importing tapes from entry/exit ports Exporting tapes to entry/exit ports Restarting ACSLS or NDMP Libraries Importing shadow tapes (NetApp VTL) Removing a tape library

Managing tape libraries in tree view

Viewing tape library details Modifying a library Changing the device view type Opening and closing library door Opening and closing entry/exit ports Unloading or importing tapes from entry/exit ports Exporting tapes to entry/exit ports Restarting ACSLS or NDMP libraries Importing shadow tapes (NetApp VTL) Removing a tape library

Managing tape drives in list view

Viewing tape drive details Configuring performance options for a tape drive

Optimal transfer buffer size

Checking the status of a tape drive Changing the status of a tape drive Configuring cleaning slots Configuring the cleaning lives option Configuring automatic cleaning options for a tape drive Manually submitting a drive cleaning request Unloading a tape Loading a tape Removing a tape drive

Managing tape drives in tree view

Viewing tape drive details Configuring physical tape drives

Optimal transfer buffer size

Checking the status of a tape drive Changing the status of a tape drive Configuring cleaning slots Configuring the cleaning lives option Configuring automatic cleaning options for a tape drive Manually submitting a drive cleaning request Unloading a tape Loading a tape Marking media for re-use Removing a tape drive

Adding shared devices

Adding shared drives to non- shared library using the semi- automatic method Adding shared drives to non-shared library manually Sharing standalone drives

Managing storage media

Role-based access for storage media management Viewing storage summary Viewing disk storage details Viewing tape storage details Managing tape storage media

Labeling tape media Blanking tape media Scanning tape media Marking a tape as unusable Marking a tape as read-only Marking a tape for reuse Removing an offline tape

Managing savesets

Viewing saveset details Configuring saveset expiry options Expiring all savesets on disk-based storage Deleting savesets from disk-based storage devices Deleting savesets from tape-based storage devices

Managing user and group accounts

About user accounts About user and group privileges and presets

Role-based User and Groups privileges Configuring user details Configuring memberships for a user account or user group Granting privileges and quota Granting add and remove permissions Setting up notification profile

Setting a user policy Using Secure Mode

Enabling or Disabling Secure Mode

Using Presets

Creating a Preset Modifying a Preset Deleting a Preset

User privileges Predefined Presets Integrating Active Directory with NetVault

Considerations for Linux-based NetVault Managing AD users

Adding an AD user Deleting an AD user

Managing AD groups

Adding an AD group to NetVault Server Viewing a list of AD groups that exist in NetVault Modifying description of added AD group in NetVault Deleting an AD group that was added to NetVault

Using Azure Active Directory as an identity provider

Setting up an Azure AD login with NetVault

Registering NetVault on the Azure portal Setting authentication for Azure AD users Restricting an application to a set of users Configuring Azure AD in NetVault

Managing an Azure AD user

Adding an Azure AD user Deleting an Azure AD user

Managing Azure AD groups

Adding an Azure AD group to NetVault Server Viewing a list of Azure AD groups that exist in NetVault Modifying the description of an Azure AD group in NetVault Deleting an Azure AD group from NetVault

Managing Tenant

About tenant management Adding tenants

Configuring tenant details

Modifying tenants account Deleting tenant Disabling tenant

Monitoring events and configuring notifications

About NetVault events About notification methods Role-based access to configure notification Event classes Events types

Role-based access to view events

Viewing event logs

Reporting in NetVault

Reporting system overview

Working with reports Generating reports Setting a favorite report Setting filters for report Editing report job definitions Using notification methods to send reports by email reports Customizing table views for reports Adding charts to reports Exporting reports to PDF files

Available reports

Working with client clusters

About client cluster support Device configuration in cluster environment Installing and upgrading cluster-aware plug-ins

Prerequisites Installing a cluster-aware plug-in Upgrading a cluster-aware plug-in

Configuring a cluster-aware plug-in

Configuring preferred network address for cluster nodes Configuring default settings for a cluster-aware plug-in

Managing virtual clients

Modifying a virtual client Checking access to a virtual client Determining the current real client Removing a virtual client

Backups using cluster-aware plug-ins Restores using cluster-aware plug-ins

Configuring default settings for NetVault

About configuring default settings

Other configuration utilities

Configuring encryption settings Configuring plug-in options

Configuring default settings for Disk Devices Plug-in Configuring default settings for nvjobstart

Configuring default settings for post-scripts Configuring default settings for Verify Plug-in Configuring Deployment Manager Settings

About Deployment Manager Configuring default settings for Deployment Manager

Configuring Job Manager settings

About Job Manager Configuring default settings for Job Manager

Configuring Logging Daemon settings

About Logging Daemon Configuring disk space alert thresholds Modifying the purge policy for log messages Configuring additional settings for Logging Daemon

Configuring Media Manager settings

About Media Manager Configuring general settings for Media Manager Configuring retirement rules for dependent backups Configuring Media Manager settings for tape devices Configuring Media Manager settings for backup indexes Configuring Media Manager settings for RAS devices Configuring transfer update settings for foreign RAS devices Configuring data transfer stall timeout period for NetVault SmartDisk Configuring media request weightings Configuring default interval for backup retirement scans Configuring an alternate index read block size for Quest DR Series systems

Configuring Network Manager settings

About Network Manager Configuring timeout settings for Network Manager Enabling or disabling availability broadcasts Configuring network addresses for multihomed machines Reducing startup delay Configuring default port for Network Manager Configuring default port for Communications Manager

Configuring Process Manager settings

About Process Manager Configuring shared memory settings

Configuring RAS device settings

Configuring connection settings for NetVault SmartDisk

Configuring Schedule Manager settings

About Schedule Manager Configuring default settings for Schedule Manager Configuring default job priority settings

Configuring Web Service settings

Configuring Web Service to disable ciphers Configuring Web Service to disable protocols Enabling Web Service auditing Configuring timeout period for client operations Configuring timeout period for saveset removal request

Configuring Auditor Daemon settings

About Auditor Daemon Configuring Auditor to log only failed requests Modifying the purge policy for audit logs

Configuring firewall settings Configuring general settings

Relocating default directories Relocating the NetVault Database directory Configuring TCP/IP buffer sizes Changing language and locale settings

Changing language settings for NetVault WebUI

Disabling pre-installation package compatibility check Configuring license expiration warning period

Configuring security settings

Disabling password protection for a client Changing NetVault password

Synchronizing NetVault Time

About NetVault Time Configuring an alternate NetVault Time Server

Configuring the reporting utility

About reporting utility Customizing CSV report templates Customizing HTML report templates Customizing miscellaneous report templates Customizing plain text report templates Configuring timeout setting for report generation Configuring default mail format type for report Configuring default settings for Statistics Manager Creating a global purge policy for the Reports Database Creating table-specific purge policy

Configuring NetVault WebUI default settings Configuring NetVault to use a specific VSS provider Configuring default settings using Txtconfig

Diagnostic tracing

About diagnostic tracing Managing trace filters Enabling tracing Downloading trace files Changing the trace directory location Enabling tracing using Txtconfig Disabling tracing Deleting trace session directories

Managing diagnostic data

About support diagnostics Downloading diagnostic data Uploading diagnostic data

Using the deviceconfig utility

About deviceconfig Configuring default settings for tape libraries

General settings for tape libraries Drive cleaning settings Mixed media settings

Configuring default settings for tape drives

NDMP settings General settings for tape drives Software compression settings Drive performance settings Statistics collection settings Generic cleaning settings

NetVault processes

About NetVault processes Process description

Environment variables

Environment variables in NetVault

Network ports used by NetVault

Ports used or required

Troubleshooting

Common errors

NetVault Service fails to start on Windows NetVault Service fails to start after the machine is restarted Login fails after any change in the server IP address Unexpected behavior of NetVault WebUI WebUI does not run in Compatibility View in Internet Explorer NetVault installer fails during push installation VSS-based backup fails Modifying TCP/IP socket buffer size on Windows Restores using Data Copy savesets fail on clients running NetVault 10.0.1 Restore fails on Itanium platforms if the index is larger than 2GB After upgrade, console error is displayed on WebUI pages Domain user is unable to login NetVault Server if the workstation attribute is set. Domain user is unable to login NetVault Server on Debian 9. Adding the target machine as a client fails, after successful push installation. Unable to install, uninstall or navigate catalog search page after manually uninstalling NetVault Client Host. Unable to install, uninstall catalog search on client after NetVault Server migration with the same or different server name External Azure AD user cannot add an external Azure AD user to NetVault Server Failed to verify target Windows machine from a Linux-based NetVault Server NetVault is unable to send reports as an email attachment in PDF format on RHEL 5.x platform Restore fails on NetVault Database backup When using RDA for backups, only four streams are used at once Unable to create large VTL on Linux Browsing a folder with a large number of files times out

Safe Mode in NetVault

• Viewing Topics 365 - 368 of 580

×

Predefined Presets

NetVault includes three predefined Presets, based on user specific roles.

The predefined Presets include the following:

•	Administrator: The administrator role allows MSP administrator to manage the tenants and perform all the administrative functions in NetVault.

•	Tenant Administrator: The tenant administrator role allows to manage all the tenant users and tenant clients for an organization.

•	Tenant User: The tenant users roles allows them to use NetVault to protect their authorized client systems.

The following table lists the privileges included in the predefined Presets.

 

Table 115. Predefined Presets

Privilege	Administrator	Tenant administrator	Tenant user
Clients — Add/remove clients	X	X
Clients — Add/remove virtual/ clustered clients	X	X
Clients — Administer client groups	X	X
Clients — Configure client	X	X
Clients — Get client proper-ties	X	X	X
Clients — Set firewall relationship	X	X	X
Device — Add or Update Snapshot Array	X	X
Devices — Add libraries	X
Devices — Add Random Access Store	X
Devices — Add simple drives	X
Devices — Clean drives	X
Devices — Manage devices	X
Devices - Manage Array Snapshot	X	X	X
Devices — Open and close entry/exit ports	X
Devices — Open and close library doors	X
Devices — Perform device checks	X
Devices — Reconfigure devices	X
Devices — Remove devices	X
Devices — Set drive cleaning properties	X
Devices — Update Random Access Store	X
Jobs — Abort jobs	X	X	X
Jobs — Acknowledge policy errors	X	X	X
Jobs — Administer back-up/restore sets	X	X	X
Jobs — Administer policies	X	X
Jobs — Delete job	X	X	X
Jobs — Delete scheduled phase	X	X	X
Jobs — Hold job	X	X	X
Jobs — Jobs owned by this user may run	X	X	X
Jobs — Quiesce policy	X	X
Jobs — Restart job	X	X	X
Jobs — Resume job	X	X	X
Jobs — Run predefined jobs instantly	X	X	X
Jobs — Stop Job	X	X	X
Jobs — Submit/update backup jobs	X	X	X
Jobs — Submit/update re-store jobs	X	X	X
Jobs — View backup jobs	X	X	X
Jobs — View back-up/restore sets	X	X	X
Jobs — View policies	X	X	X
Jobs — View restore jobs	X	X	X
Media — Blank ANSI media	X
Media — Blank bad media	X
Media — Blank media	X
Media — Blank non-NetVault media	X
Media — Export media	X
Media — Get media or device item status	X
Media — Import media	X
Media — List media	X	X	X
Media — Load/unload media from drives	X
Media — Manage media requests	X
Media — Mark media for re-use	X
Media — Modify backup expiry data	X	X	X
Media — Remove media	X
Media — Scan foreign media	X
Media — View and diagnose media requests	X
Media — View backup expiry data	X	X	X
Media — View media properties	X
Media — Write media labels	X
NetVault Appliance - Adjust System Configuration	X
NetVault Appliance - Create Storage Containers	X
NetVault Appliance - Delete Storage Containers	X
Reports — Modify/edit report Jobs and components	X	X	X
Reports — View and run reports	X	X	X
Server — Manage Server Settings	X
Server — View events	X	X	X
Server — View logs	X	X	X
Services — Administer and restart	X
Storage Tier — Administer storage tier	X
Storage Tier — List storage tier	X	X	X
System — Change global notification profile	X
System — Dump log entries	X	X	X
System — Install/remove software packages	X	X
System — Install license	X	X
System — Manage dashboards	X	X	X
System — Manage Operator Messages	X	X	X
System — Permitted to use CLI tools	X
System — Purge log entries	X
System — View dashboards	X	X	X
Users — Administer user accounts	X	X
Users — Reset password for user	X

Integrating Active Directory with NetVault

NetVault installed on a Windows or Linux machine can communicate with Microsoft Active Directory (AD). Additionally, NetVault installed on a Linux machine can communicate with OpenLDAP Directory Services. Integrating AD with NetVault enables role-based access control in NetVault. It lets users log in to NetVault using their AD credentials. It also lets AD users manage NetVault users.

 

NOTE: NetVault Server supports Secure Light Directory Access Protocol (LDAPS) protocol for both Microsoft Active Directory (AD) and OpenLDAP Directory.

 

IMPORTANT: During Active Directory integration with NetVault, the Active Directory service must always be available. Additionally, the NetVault Server should be a member of the domain.

Adding an AD group to NetVault and specifying privileges, levels of access, and notifications for the group ensures that members of the group have the corresponding access from the first time that they log on.

•	Considerations for Linux-based NetVault

•	Managing AD users

•	Managing AD groups

Considerations for Linux-based NetVault

Before you integrate Active Directory (AD) with a Linux-based installation of NetVault, consider the following conditions and prerequisites:

•	To let the Linux server communicate with AD, integrate NetVault with the domain controller using Samba Winbind or System Security Services Daemon (SSSD).

•	Host name of the Linux machine should be set to its FQDN. (For example, mymachine.mydomain.com)

•	Enable the use of fully qualified domain names on the Linux machine on which NetVault is installed. Short names are not permitted.

•	Samba Winbind: Under the [global] section, smb.conf must have the following entry:

winbind use default domain = no

•	SSSD: under the [domain/<domain name>] section, sssd.conf must have the following entry:

use_fully_qualified_names = True

•	On the Linux machine where NetVault is installed, to retrieve all domain controller groups, enable enumeration of group databases.

•	Samba Winbind: Under the [global] section, smb.conf must have the following entry:

winbind enum groups = yes

•	SSSD: Under the [domain/<domain name>], to retrieve domain controller groups and to fetch groups from child and trusted domains, respectively, the sssd.conf must have the following entries:

enumerate = True

subdomain_enumerate = all

•	While logging in or adding a domain user, using the DNS suffix with the domain name is recommended; for example, domain.local\user or username@dns.local.

Managing AD users

The following list identifies what various users can and cannot do within NetVault as it pertains to Active Directory (AD):

•	When an AD user logs in using an AD login, such as a domain name followed by the user name or a name that contains the @ symbol, NetVault authenticates the login against Active Directory. This behavior lets an AD user log in to NetVault even without a local NetVault account.

•	If authentication succeeds and this is the first time that the user is logging in, NetVault takes one of the following actions:

•	If a corresponding AD group exists in NetVault, NetVault adds the user and assigns the user the privileges, access levels, and notification settings that are defined for the corresponding AD group.

•	If the user does not have a NetVault account, NetVault adds the user but excludes all privileges, access levels, and notification settings. When the local NetVault Administrator logs in, the administrator can view the AD user entry and assign the applicable privileges.

•	NetVault automatically fetches the respective user details from the domain controller and stores it locally in the NetVault database. In case of secure mode, the details are fetched from domain controller and overwritten in the NetVault database on every successful login.

 

•	If authentication fails, NetVault displays an error message and prevents the user from logging in.

•	All NetVault MSP administrators can view all local and AD NetVault users.

•	An AD NetVault user with administrative privileges can add authenticated AD users; a local NetVault Administrator cannot.

•	An AD NetVault user with administrative privileges can rename an existing NetVault user to an authenticated AD NetVault user; a local NetVault Administrator cannot. You must ensure that the password fields remains empty to maintain the integrity of the user’s AD password.

•	Once the AD user is added in NetVault, it cannot be renamed to any other user name.

•	No one can change an AD user’s password or set the password to use the Password never expires option.

•

A local NetVault Administrator or an AD NetVault user with administrative privileges can change user-based information that is accessed by using the Modify Details option as this information is stored in the NetVault Database. However, if the secure mode is enabled, the NetVault administrator and other users are allowed to edit or change only E-mail 2 and E-mail 3 of an AD NetVault user.

NOTE: On Windows based NetVault Server, if the Workstation attribute is set for a user in the AD database, then NetVault fetches that information and stores it against the Workstation in the user details. If the user has multiple workstations, they display as separated by commas. If you want the AD user with the Workstation attribute set in AD to log in to the NetVault Server, then the user must specify the NetVault Server in the AD Workstations list. On Linux-based NetVault Server, the workstation field cannot be fetched, hence the user is unable to login. We recommended that workstation should not be set in AD for Linux Server.

An administrator can perform the following tasks in NetVault:

•	Adding an AD user

•	Deleting an AD user

•  Previous
• Viewing Topics 365 - 368 of 580
• Next 

Search this document Search all documents for this product-version Search all documents for this product Search all documents

×

 Welcome to Quest Support

You can find online support help for Quest *product* on an affiliate support site. Click continue to be directed to the correct support content and assistance for *product*.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating

© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center