We recently received a security scan report from our Sec Ops team that indicated "The remote server's SSL certificate has already expired" for NetBackup on ports 1556 and 3652. I've got a few questions:
Thanks for any and all assistance in this mystery.
NetBackup processes also use TCP ports for intra-host connects that are internal to the host. These ports do not need to be open externally. The ports may be bound and listening only for connections to the loopback interface (127.0/8, or ::1) or for all network interfaces (0.0.0.0, *.*.*.*, or:::) depending on the hostname targeted by the connecting process; localhost or other hostname that is local to the host.
Do you see any errors within NetBackup that says Certificates are expired ?