{{ $t('index.defaultHeader.logo') }}

Sangfor Cloud Platform (SCP)

Enterprise Cloud Computing Platform Built on Business-Centric HCI.

{{ $t('productSubHeader.tabs.document') }}

{{ $t('productSubHeader.tabs.bestPractice') }}

{{ $t('productSubHeader.tabs.case') }}

{{ $t('productSubHeader.tabs.tool') }}

{{ $t('productSubHeader.tabs.bbs') }}

{{ $t('productSubHeader.searchLabel') }}

{{ $t('productDocDetail.guideClickSwitch') }}

{{ $t('productDocDetail.know') }}

{{ $t('productDocDetail.dontRemind') }}

6.11.2

{{item.code}}

User Manual

Product Description

Installation and Deployment

Platform License

Resource Initialization

Configuration Steps

Overview

Resource Overview

Compute

Networking

Security Services

aSEC Installation and Deployment

aSEC Configuration Guide

Hybrid Cloud Services

Third-Party Public Cloud

Reliability Center

Operations Center

Storage

Monitoring Center

Management

Application Service

SCP Application Center

Chinese/English language switch

Tenant User Guide

Networking

Security

Reliability

Monitor and Management

Release Notes

Overview

Upgrade Guide

Upgrade Instructions

Upgrade Notes

SCP Upgrade

Upgrade Preparations

Pre-upgrade Check

Upgrade Procedure

Abnormalities Troubleshooting

NBU User Guide for SCP 6.11.2

Introduction

Deployment

Configuring NetBackup and XBSA App

Backup Policy Management

Backup Management

Product Overview

Product Architecture

Key Functionalities

aSV

aSAN

aNET

aSecurity

Management

Application Scenarios

Private Cloud Solution

Disaster Recovery Solution

Database Management Solution

Server Virtualization Solution

GPU Scenario Solution

VDI Solution

Installation And Deployment

Networking Installation Introduction

Preparation Before Installation

Witness Node System Installation (Optional)

Service Packs

HCI Cluster Initialization

HCI Licensing

Virtual Machine Service

Introduction

VM Types and Specifications

Related Concepts

Migration and Scheduling

Resource and Configuration Changes

Attribute and Tag Management

Expiration Date and Group Management

VM Security and Authentication

Enable Turbo Mode

FAQ

Networking Service Manual

Topology

IP and Bandwidth

Network Insight

Traffic Mirroring

Network Deployment

Shared Service Network

Image Service

Introduction

Operation Procedures

Create Images

Public VM Images Management

Private image management

View Private VM Images

Migration

Information Collection and Analysis

Information Collection for Common Migration

Migration Design

SCMT

Resource Assessment

VM Configuration Plan

Migration Feasibility Assessment

Migration Implementation

Migration Implementation

SCMT

aHM

ISO

Migration verification

Rollback

VM Settings on HCI

Troubleshooting

SCMT

Agent Installation Issues

Issues When Creating Migration Tasks

Issues During Migration Process

Issues After Migration

Storage Service

Overview

Virtual Storage Creation and Management

Storage Area Network Settings

Virtual Storage Pool Creation

Virtual Storage Pool Management

FAQ

Local Storage Pool Creation and Management

FAQ

External Storage Integration and Management

External Storage Management

FAQ

Backup Service

Overview

Backup Terminology

Backup Types

Quick Backup

CDP

Backup Creation and Management

Backup Creation

Quick Backup

CDP

Backup Management

Quick Backup

CDP

Backup Settings

FAQ

Snapshot Service

Feature Introduce

Snapshot Write & Read processes

Snapshots Configuration

Snapshots Management

Consistency Snapshot Management

Snapshot Polices Management

Correlated Snapshotting

FAQ

Primary-Secondary Disaster Recovery

Product Introduction

Applicable Scenarios

Constraints and Restrictions

Assessment and Planning

DR Network Planning

Installation and Deployment

SP Check with aDeploy

DR Configuration Guide

Primary/Secondary DR Configuration

Recovery Configuration

Multiple-Tenant Management

Feature Description

Multiple-Tenant Configuration

MSP Management

Multiple-Tenant Management

Tenant User

Tenant User Guide

Compute

Virtual Machine

Image

Networking

Network Topology

IP And Bandwidth

Network Deployment

Application Delivery Controller (ADC)

Security

Reliability

Monitor and Management

Monitor Center

Product Introduction

Integration with Third-Party Monitoring Ecosystem

Monitor Center Configuration Guide

Monitoring Configuration Best Practices

Cluster Management

Overview

Terminology

Cluster Creation and Management

Cluster Creation

SCP Deployment

Cluster Management

HCI Cluster Management

Cluster Reliability

HA

HA Test Guide

Cluster Maintenance

Expansion

Upgrade

SCP Upgrade

Patch

FAQ

Platform Management

User Management

System management

Security Service

HCI Platform

Access Control & Identity Management

SCP Platform

Access Control & Identity Management

Virtual Machine

vNGAF

VM Disk Encryption

Proactive Maintenance & Vulnerability Management

Comprehensive Audits with the aDeploy Tool

Maintenance & Operations Guide

SCP O&M Guide

Monitoring and Alerting Module

Health Check

aDeploy

Sangfor CLI

SCP Routine O&M Guide

Daily O&M Guidelines

Weekly O&M Guidelines

Monthly O&M Guidelines

Basic Service Adjustment Guide

System Power-On and Power-Off

Upgrade and SP Installation Guidelines

Network Configuration Adjustment

Capacity Expansion

SCP O&M Risks and Precautions

Hardware O&M Guide

aDeploy Use Guide

Overview

Introduction

Auto Upgrade

Key Features

Installation and Upgrade

Manual Upgrade

Uninstall aDeploy

Usage

Health Check

Toolkit

Pre-change Check

Pre-upgrade Check

Feedback

Troubleshooting Common Issues

Windows Compatibility Issues

The Mapping Relationship Between HCI and SCP

Sangfor Cloud Platform (SCP)

{{ breadTitle }}

NBU User Guide for SCP 6.11.2

Data Transmission Encryption

{{sendMatomoQuery("Sangfor Cloud Platform (SCP)","Data Transmission Encryption")}}

Data Transmission Encryption

{{ $t('productDocDetail.updateTime') }}: 2026-01-01

During the backup and recovery process, in order to ensure data security, XBSA App and NetBackup client will enable data transmission encryption by default. After data transmission encryption is enabled, the backup data will be encrypted before transmission. It is recommended to enable it when the NetBackup client is in an untrusted network environment and the backup data security is threatened.

In the case of a secure and reliable network environment, in order to achieve the best backup and recovery performance, it is recommended to change the data transmission mode of XBSA App from nbdssl to nbd, and turn off NetBackup's data transmission encryption (DTE). Turning off data transmission encryption for a single test can slightly increase the backup and recovery rate, but it cannot achieve the best backup and recovery performance.

The method to change the XBSA App transmission mode is as follows:

Modify the TransportMode in /etc/sf-vmbackup-app/sf-vmbackup-api.yaml to nbd;
Restart the service: sudo systemctl restart sf-vmbackup-api.service.

The method to turn off NetBackup encryption in transit is as follows:

Confirm that the global encryption in transit is "preferably off". The operation method is to log in to the NetBackup Web UI, click the "Settings" icon in the upper right corner of the page, enter Global security settings > Secure Communication, and set it in the "Data-in-transit encryption"

Modify the NetBackup client /usr/openv/netbackup/bp.conf, set

DTE_CLIENT_MODE = OFF, can turn off the encryption in transit of the NetBackup client.