BackBox H4.00 Tape Encryption Option
Configuration
30 BackBox H4.00 Tape Encryption
Adding the Key Manager in BackBox configuration
This activity should be accomplish by the Security Authority user. The Security
Authority user should have a NonStop user account whit enough privilege to modify
the BackPak Domain configuration.
Logon to the BackPak UI interface. See user interface details Key Manager.
• Select the Configuration menu and select the Switch to Edit mode
• Select the Key Manager tab
• Select the targeted Key Manager ID. If the Key Manager entity doesn’t exit,
you will need to create one first. Click on the Create Key Manager button
and filled Key Manager’s information:
o Choose an alias name and type it in the Key Manager ID filed
o Set the Server Type according Key Manager model. (ESKM or KMIP)
o Set the Client Type according client connectivity purpose and Key
Manager model. For Server Type KMIP, Client Type can be only VTC
ONLY. For Server Type ESKM, the Client type can be either VTC
ONLY or VLE INTEROPERABILITY
o Enter the Key Manager IP port where VTC Client can reach the server
o Add all IP Addresses that VTC Client can used to reach the server. If a
connection failed using the first address, the VTC Client will attempt to
connect using the next one until the list is exhausted. Note: Some key
manager server like ESKM work in cluster mode. IP address of each
member of the cluster can be added to the list
o When Client Type is VTC ONLY, the optional check box Delete old key
id is available. This optional field enable/disable automation of deletion
of encryption key when data expired.
o When Server Type is ESKM, a supplemental field must be provide
(ESKM Local Group.) Enter the Local Group name that VTC Client are
part of. Depending Client Type value set, the field will bet set with a
default name to BackPak (VTC ONLY) or NonStop (VLE
INTEROPERABILITY.) Value entered could be change if other group
name are used instead of default one. (See above Key Manager
Configuration prerequisites for more detail)