Difference between revisions of "Manage Hosts"

Revision as of 10:04, 21 July 2023

Note: This section is Applicable to migrations which involves NetBackup versions 8.1 and later.

NetBackup uses security certificates to authenticate NetBackup hosts. The security certificates conform to the X.509 Public Key Infrastructure (PKI) standard. A master server acts as the Certificate Authority (CA) and issues digital certificates to hosts. NetBackup 8.1 and later hosts can communicate with each other only in a secure mode. NetBackup 8.1 hosts and later must have a Certificate Authority (CA) certificate and a host ID-based certificate for successful communication. For more details please refer the NetBackup Security and Encryption guide.

So for catalog migrations between NetBackup 8.1 and later , CA Certificate and host ID certificates need to be deployed to all the NBU hosts from the destination master server. Tranzman has an inbuild feature, Host Management to assist deploy the certificates. The entire process is fully automated and flexible.

Host Management

Host Management is primarily for NetBackup certificate management.It is available under Actions->Host Management. Tranzman provides a centralised place to test the connectivity, push SERVERs to host properties, and to make hosts to request certificates from the Destination master.

Additionally, it provides options to -

Update Filesystem accelerator tracklogs
Add/Remove the origin or destination from server’s Host properties
Promote destination as master server

Host Management Operations

In order to fully automate the host management process, Tranzman provides different operations. These can be accessible under Host Management section and allows to -

Commit and execute the selected actions
Reset the all pending actions
Add a new host.
Download the selected filter list of host management info
Upload host lists, defining tags usefull for LARGE environments, and splits
Move selected hosts to/from “not selected” tab.
Adds additional SERVER entries (list of SERVERS) to all selected hosts when doing an “add destination as server” action.
Add destination server token to be used when doing certificate deployment.
Option to bypass previously completed restore operation.
To view the Origin and Destination logs for the last commit
To show/hide the TAG column and use TAGs

Host Management Actions

Tranzman also provides ability to select specific actions to perform on the selected hosts. Actions are enabled if at least one host is selected. Some actions are available only for eligible Host. For ex: Push Destination certificate is only available for servers on or above NBU 8.1

Detailed info on each Actions are available below: Performs connectivity tests from origin master <-> hosts Adds destination master name (and any additional SERVERS added) as SERVER entry on selected servers Updates the accelerator tracklogs to point to the new destination master name Uses the ORIGIN master to tell the HOST to request certificate from DESTINATION Performs connectivity test from destination master <-> hosts Removes the origin SERVER entry from bp.conf/registry of selected servers Update the bp.conf/registry of selected servers with destination master as first SERVER entry and EMMSERVER entry (for media server)

Host Management status bar

The status bar provides information on the status of ports connectivity between the server and Origin/Destination master. Helps to verify if the server has an active backup in the last 7 days, if the server is part of any available policy with accelerator enabled. It also provides the ability to view the Host properties of a server. Shows the Backup software version running on the server.

The TICKS and CROSSES are all clickable to view the output of the commands that was executed. If the ORIGIN cannot connect to a server, it is expected the same for the DESTINATION and so the host can be moved to “NOT SELECTED” tab. If the ORIGIN can connect but the destination cannot connect, verify the LOOKUP entry is ticked as this will show whether Destination is able to resolve the server name. If the Destination can resolve the name, make sure the ports are open by verifying the TICKS for one or more of pbx/vnetd/bpcd columns. If the Destination can still not connect, verify the output of the Test BPCD by clicking on its X If the output identifies a Certificate issue, and was trying to push a certificate, click on the HOSTNAME, this will show the history of actions run for the client, along with output from the Commands run at the HOST end. This will help to identify if there is an issue with the name resolution, firewalls, or routing. The Status column provides a means to sort client by common errors, clicking on the status will list the status for the Origin, Destination and the Host along with description.

Managing Hosts with Alias

Tranzman identifies if hosts point to the same client based on the CLIENT_NAME in the host properties Tranzman will group any such hosts together If an Yellow ! rather than a TICK or CROSS is shown,it means that the hosts are returning DIFFERENT results for the same CLIENT_NAME If this happens check the host management section in NetBackup, ensure all MAPPING REQUESTS are approved. It may sometimes require to manually add a host mapping in NetBackup to fix the alias errors.

Host Management Tags

Tags can be Shown / Hidden by clicking on the icon.

     Add a new TAG

If one or more hosts are selected then it allows to Edit, to assign a tag to them Delete, to remove a tag from them. Once tags have been added, the servers can be sorted or filtered by Tag.

Host Management process flow

Host Management should be performed 1 or 2 day after starting datatransfer. This will give sufficient time for Destination to discover the Origin clients.

Click on Actions->Host Management while Tranzman is in the data transfer stage and all the NBU hosts are discovered and displayed on the Host Management Page under Client Mangement.

e.g. Figure 1 shows all the NBU hosts including media servers.

Select all the eligible hosts and select Actions -> Run origin connectivity test. Confirm the Action by clicking on commit button.

A CheckConn task is created and viewed from Views->Activity Monitor. Upon completion of this task, the respective columns on the Host Management page should get populated with

rather than .

After successful connectivity test on origin, Tranzman will identify the media servers and move it to the Media Server Management tab and only clients are left in Client Management.

It is expected to return a tick on all columns for the corresponding clients. Refer Host Management status bar section to understand the column information.

Based on the test results, the other actions can be performed. To understand more about Host Management actions, refer Host Management Operations and Host Management Actions

@@ Line 5: / Line 5: @@
 |}
-== Headline ==
+===Introduction===
 NetBackup uses security certificates to authenticate NetBackup hosts. The security certificates conform to the X.509 Public Key Infrastructure (PKI) standard. A master server acts as the Certificate Authority (CA) and issues digital certificates to hosts.
-NetBackup 8.1 and later hosts can communicate with each other only in a securemode. NetBackup 8.1 hosts and later must have a <b>Certificate Authority (CA) certificate</b> and a <b>host ID-based certificate</b> for successful communication.For more details please refer to the NetBackup Security and Encryption guide.
+NetBackup 8.1 and later hosts can communicate with each other only in a secure mode. NetBackup 8.1 hosts and later must have a <b>Certificate Authority (CA) certificate</b> and a <b>host ID-based certificate</b> for successful communication. For more details please refer the NetBackup Security and Encryption guide.
 So for catalog migrations between NetBackup 8.1 and later , <b>CA Certificate</b> and <b>host ID certificates</b> need to be deployed to all the NBU hosts from the destination master server.
-Tranzman has a brilliant feature named <b>Host Management</b> which does these deployments.Additionaly it also helps you to check the NBU connectivity within hosts so before switching to destination master server
+Tranzman has an inbuild feature, <b>Host Management</b> to assist deploy the certificates. The entire process is fully automated and flexible.
-in production any connectivity issue could be highlighted and fixed.
-You can access the Host Management from Tranzman UI under <b>Actions->Host Management</b>.Certificates is a vast thing in itself so to understand it better you do need to have some basic information information on how certificates actually work in NetBackup.
+===<b>Host Management</b>===
+Host Management is primarily for NetBackup certificate management.It is available under <b>Actions</b>-><b>Host Management</b>.
+Tranzman provides a centralised place to test the connectivity, push SERVERs to host properties, and to make hosts to request certificates from the Destination master.
-Follow the below steps to deploy the certificates from the destination master server to the NBU hosts :-
+Additionally, it provides options to -
+* Update Filesystem accelerator tracklogs
+* Add/Remove the origin or destination from server’s Host properties
+* Promote destination as master server
-===Step 1===
+===Host Management Operations===
-Click on <b>Actions->Host Management</b>.Now as we are already in the data transfer stage all the NBU hosts should be discovered and should be displayed on the <b>Host Management</b> Page under <b>Client Mangement</b>.
+In order to fully automate the host management process, Tranzman provides different operations.
-e.g. Figure 1 shows all the NBU hosts including media servers.
+These can be accessible under Host Management section and allows to -
+* Commit and execute the selected actions
+* Reset the all pending actions
+* Add a new host.
+* Download the selected filter list of host management info
+* Upload host lists, defining tags usefull for LARGE environments, and splits
+* Move selected hosts to/from “not selected” tab.
+* Adds additional SERVER entries (list of SERVERS) to all selected hosts when doing an “add destination as server” action.
+* Add destination server token to be used when doing certificate deployment.
+* Option to bypass previously completed restore operation.
+* To view the Origin and Destination logs for the last commit
+* To show/hide the TAG column and use TAGs
-[[File:HostManagement1.JPG | border|1100x800px]]
+===Host Management Actions===
-<b>Figure1</b>
+Tranzman also provides ability to select specific actions to perform on the selected hosts.
+Actions are enabled if at least one host is selected. Some actions are available only for eligible Host.
+For ex: Push Destination certificate is only available for servers on or above NBU 8.1
+Detailed info on each Actions are available below:
+Performs connectivity tests from origin master <-> hosts
+Adds destination master name (and any additional SERVERS added) as SERVER entry on selected servers
+Updates the accelerator tracklogs to point to the new destination master name
+Uses the ORIGIN master to tell the HOST to request certificate from DESTINATION
+Performs connectivity test from destination master <-> hosts
+Removes the origin SERVER entry from bp.conf/registry of selected servers
+Update the bp.conf/registry of selected servers with destination master as first SERVER entry and EMMSERVER entry (for media server)
-===Step 2===
-Select all the eligible NBU hosts then <b> Actions -> Run origin connectivity test</b>  as shown in the below screenshot(Figure2) and hit  [[File:Commit.JPG | border|100x100px]].
-You would see couple of jobs being triggered named <b>CheckConn</b> under <b>Views->Activity Monitor</b>. Wait for them to complete and the respective columns on the Host Management page should get populated with
-[[File:GreenTick.JPG | border|20x15px]] rather than [[File:RedTick.JPG | border|20x20px]].
+===Host Management status bar===
+The status bar provides information on the status of ports connectivity between the server and Origin/Destination master.
+Helps to verify if the server has an active backup in the last 7 days, if the server is part of any available policy with accelerator enabled.  It also provides the ability to view the Host properties of a server.
+Shows the Backup software version running on the server.
-[[File:HostMgmtConnectivityTest.JPG | border|1100x800px]]
+The TICKS and CROSSES are all clickable to view the output of the commands that was executed.
-<b>Figure2</b>
+If the ORIGIN cannot connect to a server, it is expected the same for the DESTINATION and so the host can be moved to “NOT SELECTED” tab.
+If the ORIGIN can connect but the destination cannot connect, verify the LOOKUP entry is ticked as this will show whether Destination is able to resolve the server name.
+If the Destination can resolve the name, make sure the ports are open by verifying the TICKS for one or more of pbx/vnetd/bpcd columns.
+If the Destination can still not connect, verify the output of the Test BPCD by clicking on its X
+If the output identifies a Certificate issue, and was trying to push a certificate, click on the HOSTNAME, this will show the history of actions run for the client, along with output from the Commands run at the HOST end. This will help to identify if there is an issue with the name resolution, firewalls, or routing.
+The Status column provides a means to sort client by common errors, clicking on the status will list the status for the Origin, Destination and the Host along with description.
+===Managing Hosts with Alias===
+Tranzman identifies if hosts point to the same client based on the CLIENT_NAME in the host properties
+Tranzman will group any such hosts together
+If an Yellow ! rather than a TICK or CROSS is shown,it means that the hosts are returning DIFFERENT results for the same CLIENT_NAME
+If this happens check the host management section in NetBackup, ensure all MAPPING REQUESTS are approved.  It may sometimes require to manually add a host mapping in NetBackup to fix the alias errors.
-===Step 3===
+===Host Management Tags===
-A successful connectivity test from origin should move the media servers to the Media Server Management tab(as shown in Figure 3) and only backup clients should be seen under Client Management(Figure 4).
+Tags can be Shown / Hidden by clicking on the    icon.
-As it can be seen most of the columns are populated in Figure 4 , please refer to the below table to check what the respective column means in host management. Any unexpected [[File:RedTick.JPG | border|20x20px]] in any column should be fixed before proceeding to next steps.
+      Add a new TAG
+If one or more hosts are selected then it allows to
+Edit, to assign a tag to them
+Delete, to remove a tag from them.
+Once tags have been added, the servers can be sorted or filtered by Tag.
-{|class="wikitable" style="border:5px double maroon" font-family:Arial, Helvetica, sans-serif !important align=center cellpadding=40px width=30%;;"
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Name
-| style="font-weight:normal;" | Name of the NBU host
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Actions
-| style="font-weight:normal;" | Selected actions for the NBU host
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Version
-| style="font-weight:normal;" | Version of NetBackup
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Active
-| style="font-weight:normal;" | State of Host (Active only if backup has ran in last 7 days)
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Host props
-| style="font-weight:normal;" | NBU Host properties
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Master
-| style="font-weight:normal;" | Current Master Server for NBU host
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Accelerator
-| style="font-weight:normal;" | Accelerator Enabled/Disabled
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | Last scan
-| style="font-weight:normal;" | Time since last host management scan has been done
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | bpcd test
-| style="font-weight:normal;" |
-|-
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | config test
-| style="font-weight:normal;" | NBU bpgetconfig test
-|- style="font-weight:normal;"
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | 1556 port
-| pbx port
-|- style="font-weight:normal;"
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | 13724 port
-| vnetd  port
-|- style="font-weight:normal;"
-| style="font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;" | 13782 port
-| bpcd port
-|}
+===Host Management process flow===
+<b>Host Management</b> should be performed 1 or 2 day after starting datatransfer. This will give sufficient time for Destination to discover the Origin clients.
-[[File:HostMgmtConnectivityTestOriginResultMedia.JPG | border|1100x800px]]
+* Click on <b>Actions->Host Management</b> while Tranzman is in the data transfer stage and all the NBU hosts are discovered and displayed on the <b>Host Management</b> Page under <b>Client Mangement</b>.
-<b>Figure3</b>
+e.g. Figure 1 shows all the NBU hosts including media servers.
+[[File:HostManagement1.JPG | border|1100x800px]]
+* Select all the eligible hosts and select <b> Actions -> Run origin connectivity test</b>. Confirm the Action by clicking on commit button.
-[[File:HostMgmtConnectivityTestOriginResultClient.JPG | border|1100x800px]]
+* A <b>CheckConn</b> task is created and viewed from <b>Views</b>-><b>Activity Monitor</b>. Upon completion of this task, the respective columns on the Host Management page should get populated with
-<b>Figure4</b>
+[[File:GreenTick.JPG | 20x15px]] rather than [[File:RedTick.JPG | 20x20px]].
-===Step 4===
-Now as shown in Figure 2 there are different actions which can be performed on NBU hosts.
-Below table shows all the Actions that can be performed on the NBU hosts.
-{|style="padding: 5px; width: 85%;"
-| style="width: 1%;"|[[File:Note.png|30px]]|| style="padding: 10px; width: 85%;"|'''Note:'''  Do not select <b>Update accelerator track-log destination</b>, <b>Remove origin from host properites</b>,<b>Make destination the master in host properties</b> unless you are certain to use the NBU host with destination master server.
-Before running <b>Push destination certificate</b> ,reset the Netbackup security level for certificate deployment to Medium.
-|
-|}
-{|class="wikitable" style="border:5px double maroon" font-family:Arial, Helvetica, sans-serif !important align=center cellpadding=50px width=50%;;"
-|- style="font-weight:bold; text-align:center; font-size:15px; font-family:'Arial Black', Gadget, sans-serif !important;;"
-| Action
-| style="font-weight:normal; text-align:center;" | Description
-|-
-| style="font-size:15px; font-family:Arial, Helvetica, sans-serif !important;;" | Run origin connectivity test
-| Runs a connectivity test for all the NBU hosts from the origin master server
-|-
-| style="font-size:15px; font-family:Arial, Helvetica, sans-serif !important;;" | Add destination to host properties
-| Add the destination master server name to bp.conf (*nix )or registry(Windows) on selected NBU hosts.
-|-
-| style="font-size:15px; font-family:Arial, Helvetica, sans-serif !important;;" | Update accelerator track-log destination
-| Updates the accelerator by forcing the new master server name in the track logs.
-|-
-| style="font-size:15px; font-family:Arial, Helvetica, sans-serif !important;;" | Push destination certificate
-| It adds the CA Certificate and host ID certificate from the destination master server to the selected NBU hosts.
-|-
-| style="font-size:15px; font-family:Arial, Helvetica, sans-serif !important;;" | Run destination connectivity
-| Runs a connectivity test for all the NBU hosts the destination master server
-|-
-| Remove origin from host properites
-| Deletes the master server name from bp.conf (*nix) or registry(Windows) on selected NBU hosts
-|-
-| Make destination the master in host properties
-| In case when there are both origin and destination master server name in bp.conf(*nix) or registry(Windows) selecting and running this option will promote the destination master server name over origin.
-|}
-Follow the above steps for any Action to be performed in Host Management and fix any unexpected [[File:RedTick.JPG | border|20x20px]].
-{|style="padding: 5px; width: 85%;"
-| style="width: 1%;"|[[File:Note.png|30px]]|| style="padding: 10px; width: 85%;"|'''Note:'''  Connecitivity test in Actions always take precedence before any other Action, be it from the origin or destination master server.
-|
-|}
+[[File:HostMgmtConnectivityTest.JPG | 1100x800px]]
+* After successful connectivity test on origin, Tranzman will identify the media servers and move it to the <b>Media Server Management</b> tab and only clients are left in <b>Client Management</b>.
-[[Finalize|Jump to Finalize]]
+It is expected to return a tick on all columns for the corresponding clients. Refer Host Management status bar section to understand the column information.
-[[Monitoring |Return to Progress]]
+Based on the test results, the other actions can be performed. To understand more about <b>Host Management</b> actions, refer Host Management Operations and Host Management Actions

Difference between revisions of "Manage Hosts"

Revision as of 10:04, 21 July 2023

Contents

Introduction

Host Management

Host Management Operations

Host Management Actions

Host Management status bar

Managing Hosts with Alias

Host Management Tags

Host Management process flow

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Tranzman

Recovery Documentation

Misc

Tutorials

Tools