Backing up the keys to a key management server

You can create the secondary backups of the data encryption keys on a key management server. The data encryption keys that you back up to a key management server are managed with the client certificate.

There is a limited number of keys you can back up on the key management server. Therefore, it is recommended that you delete unnecessary keys when possible.

When you back up to a key management server, the server uses another data encryption key to encrypt the original keys. Both keys reside on the server.

Before you begin

  • You must have the Security Administrator (View & Modify) role
  • Confirm that the VSP G series or VSP F series storage systems are not processing other tasks. You cannot back up the keys while your storage system is processing other tasks.

Procedure

  1. Display the Device Manager - Storage Navigator main window.

  2. Select Administration in Explorer, and select Encryption Keys.

    The Encryption Keys window is opened.

  3. On the Encryption Keys tab, click View Backup Keys on Server to open the Backup Keys to Server window.

  4. (Optional) In the Backup Keys to Server window, for Description, type a description and then click Finish.

  5. In the Confirm window, confirm the settings, and enter your task name in Task Name.

    If you want the Task window to open after you click Apply, select Go to tasks window for status.

    Click Apply.

    The secondary backup encryption key is saved.

Parent Topic