Configuring RHEL Server

To configure system settings, do the following:

1. Connect to the server using the user account you created.
2. For the separate directory that you created for the backup data, allow access only for the user account you created during the installation. Use the following commands:

• To assign the directory's owner:

Both owner and group must be the user account you created during the installation.

• To allow access to the directory only for its owner and the root account:

3. Enable automatic security updates:

After you enable automatic updates, change the following parameters in the /etc/dnf/automatic.conf file:

• upgrade_type to security

• apply_updates = yes

4. Enable download timers for the security updates:

5. To reduce the risk of server timing and man-in-the-middle attacks, change the /etc/sysconfig/chronyd configuration:

Restart the service:

6. By default, the user account you created during the installation is a member of the wheel group and has sufficient privileges to deploy and install the required Veeam Backup & Replication components. For more information, see Adding Hardened Repositories. After the repository is added, you must remove the user account from the wheel group and disable SSH access. To do this, perform the following steps:

1. Allow the user account to reboot and shutdown the operating system:

2. Disable SSH access to the server and remove the user account from the wheel group:

Note that this user account will lose sudo permissions. if you need to execute commands as a privileged user, you must boot the operating system into the single user mode.