The Linux MediaAgent contains built-in Security-Enhanced Linux (SELinux), which is a Linux kernel security module that provides a mechanism for supporting access control security policies. Our SELinux module contains pre-configured security policies to protect the disk libraries hosted on the MediaAgent from any ransomware.
To take advantage of the built-in security it is recommended that you execute the cvsecurity.py tool on the nodes immediately after setting up the Commvault HyperScale X.
For more information, see Enabling Ransomware Protection for a HyperScale MediaAgent.