Operational Defect Database
BugZero found this defect 892 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
Veeam | kb4250
How to Add RHEL 8/9 Using NIST 800-171 or DISA STIG Security Profile to Veeam Backup & Replication
Last update date:
3/25/2024
Affected products:
Veeam Backup & Replication
Affected releases:
12.1
Fixed releases:
No fixed releases provided.
Description:
Purpose
This article documents the additional procedures required to add a Linux machine to Veeam Backup & Replication when that machine is using either the NIST 800-171 or DISA STIG security profile. Specifically, this article was developed using Red Hat Enteprise Linux (RHEL). The initial error one will experience when attempting this without following the procedures in the article is: CSshShellStreamRebex
Solution
Resolution Summary To add a Linux server using these security profiles, two things must be done to allow them to be added to Veeam Backup & Replication: tmux must not automatically be launched when the account Veeam Backup & Replication uses connects. This Veeam Backup & Replication limitation is documented in KB4466: Impact of tmux on Veeam Interactions With Linux OS. fapolicyd must be updated during the step when the "New Linux Server" wizard is attempting to install the Veeam services.
More Information
Additional fapolicyd-cli Commands If the Linux server will be used as a VMware Backup Proxy, execute the following commands to allow it to be able to use Network (NBD) transport mode:
