Manualshelf

Virtual TapeServer 6.03.42 Operations and Administration Guide

ManualsBrandsHP ManualsServerHP NonStop G-Series
81828384858687888990
80 | Using SecureVTS
3. Click ADD NEW SERVER in the KEY SERVERS section of the page. The following is
displayed:
4. In the Host/IP Address field, type the hostname or IP address of a VTS server in your
environment that you would like to designate as a key server.
5. In the Port Number field, type the port number of the key server, which is 9090 by
default.
6. Select the Key Generator checkbox to enable the key server to generate keys. If you do
not select this checkbox, the key server can only be used to return keys from its database
that were previously used to encrypt virtual tapes.
7. In the Username field, type the username of the account that can access the VTS server.
By default, the bill user is configured on each VTS server.
8. Type the password of the specified user in the Password field. The default password for
the bill user is bbill.
9. Click SUBMIT.
After you add a key generator and a key database backup host (other than localhost), allow
five minutes for the key generator to create the first set of keys and key IDs. Key IDs may not
be available until after this initial time period.
Adding a key database backup host
By default, each VTS server is configured as its own backup host. You must configure at least
one other backup host on the key generator. (You do not need to configure a backup host on a
server that is not configured as the key generator.) The key server backs up the key database
to the localhost and all defined backup hosts every time a new key is generated. (Keys are not
available for use until the key database is successfully backed up to the localhost and at least
one other backup host.)
Note It is highly recommended that you configure at least one other backup host that is not
in the VTS environment. An off-site backup host ensures that data is safe in case of
unrecoverable failures in the VTS environment.
To configure a server as a backup host, the server must support SCP, either through the use
of the scp or scp2 program. The scp program is installed on every VTS server. If you use a non-
VTS server as a backup host, make sure SCP is supported.