Name: Oracle Secure Backup
Brand: Oracle
Rating: 4 (1 reviews)

To Next Page

To Previous Page

Configuring Security for the Administrative Domain

6-20 Oracle Secure Backup Installation and Configuration Guide

You can set the key size when you use the mkhost command or Oracle Secure Backup

Web tool to configure a host. If you specify the --certkeysize option on the

mkhost command, then the specified value overrides the default certificate key size

set in the security policy. The key size applies only to the newly configured host and

does not affect the key size of any other current or future hosts.

Because larger key sizes require more computation time to generate the key pair than

smaller key sizes, the key size setting can affect the processing time of the mkhost

command. While the mkhost command is running, obtool might display a status

message every 5 seconds. obtool displays a command prompt when the process has

completed.

To set the key size in the mkhost command:

1. Log in to obtool as a user with the modify administrative domain's

configuration right.

2. Issue the mkhost command to set the key size for a host. The following example

sets the key size to 4096 bits when configuring client stadf56. This setting applies

only to host stadf56.

ob> mkhost --inservice --role client --certkeysize 4096 stadf56

Info: waiting for host to update certification status...

ob> lshost stadf56

stadf56 client (via OB) in service

Enabling and Disabling SSL for Host Authentication and Communication

By default Oracle Secure Backup uses authenticated and encrypted Secure Sockets

Layer (SSL) connections for all control message traffic among hosts.

You can disable SSL encryption by setting the securecomms security policy to off.

Disabling SSL might improve performance, but be aware of the inherent security risks

in this action.

To set the securecomms security policy:

1. Log in to obtool as a user with the modify administrative domain's

configuration right.

2. Use the setp command to switch the securecomms policy to off, as shown in

the following example:

ob> cdp security

ob> setp securecomms off

See Also: Oracle Secure Backup Reference to learn how to use the

mkhost command

See Also: "Host Authentication and Communication" on page 6-9

See Also: Oracle Secure Backup Administrator's Guide to learn how to

set a policy

Compression	Yes
Tape Library Support	Yes
Web Interface	Yes
Command Line Interface	Yes
Scheduling	Yes
Reporting	Yes
Role-Based Access Control	Yes
NDMP Support	Yes
Virtual Tape Library Support	Yes
Operating Systems Supported	Linux, Windows, Solaris, AIX, HP-UX
Backup Methods	Full, Incremental, Differential
Media Support	Tape, Disk
Database Support	Oracle Database
Encryption	AES 256-bit
Centralized Management	Yes
Cloud Integration	Oracle Cloud

Oracle Secure Backup User Manual

Questions and Answers: