Protect backup image from manual delete from nbu and catalog
Hi,
Need your expert advise. In our office, almost all in the team has FULL access in NBU. My concern is if someone has wrongly delete a backup image (under Catalog). Is there a way to prevent this? How to monitor who did what in NBU? Please advise, thanks.
With creating admin dir, i dont need to enable auditing right?
Yes, no need to enable ehanced auditing.
According to our Veritas consultant, enabling audit trail requires big disk space and NBU audit affects system performance?
Space consumption will not increase drastically (you may not even notice it) as audit information is stored in NBDB tables and not in flat files. There is no impact on system performance as only user activity is audited and not the backgroud process. There will be no performance impact on backup, restore and other jobs however users (NetBackup admins) may complain of slow response in NetBackup administration console.
I have seen login issues, other user specific issues and some other problems with Enhanced Auditing. I cannot comment if you may or may not face those issues in your environment. Looking at your requirement I would suggest its worth a try, if you dont like it you can always disable it. It is not scary like NBAC, which can potentailly break your environment.
To disable Enhanced Auditing, run "bpnbaz -DisableExAudit" command.
https://www.veritas.com/support/en_US/doc/21733320-127424841-0/v109984188-127424841
Enabling Enhanced Auditing.
https://www.veritas.com/content/support/en_US/doc/21733320-127424841-0/v106286614-127424841