39:[["$","$L3e",null,{"htmlContent":"

NetBackup key management service

This section includes the following topics:

","navItem":{"index":9,"isPublic":true,"title":"NetBackup key management service","slug":"21733320-158332701-0/v21733914-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21733914-158332701.htm","hasChildren":true,"token":"","children":[{"index":10,"isPublic":true,"title":"About FIPS enabled KMS","slug":"21733320-158332701-0/v106382697-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v106382697-158332701.htm","hasChildren":true,"token":"","children":[{"index":11,"isPublic":true,"title":"About Federal Information Processing Standards (FIPS)","slug":"21733320-158332701-0/v100451955-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v100451955-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":11,"isPublic":true,"title":"Installing KMS","slug":"21733320-158332701-0/v21634773-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634773-158332701.htm","hasChildren":true,"token":"","children":[{"index":12,"isPublic":true,"title":"Using KMS with NBAC","slug":"21733320-158332701-0/v21634826-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634826-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":13,"isPublic":true,"title":"About installing KMS with HA clustering","slug":"21733320-158332701-0/v21634865-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634865-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":14,"isPublic":true,"title":"Enabling the monitoring of the KMS service","slug":"21733320-158332701-0/v21634885-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634885-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":15,"isPublic":true,"title":"Disabling the monitoring of the KMS service","slug":"21733320-158332701-0/v21634900-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634900-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":12,"isPublic":true,"title":"Configuring KMS","slug":"21733320-158332701-0/v21634934-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634934-158332701.htm","hasChildren":true,"token":"","children":[{"index":13,"isPublic":true,"title":"Creating the key database","slug":"21733320-158332701-0/v21634945-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634945-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":14,"isPublic":true,"title":"About key groups and key records","slug":"21733320-158332701-0/v21634976-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634976-158332701.htm","hasChildren":true,"token":"","children":[{"index":15,"isPublic":true,"title":"About creating key groups","slug":"21733320-158332701-0/v21634999-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21634999-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":16,"isPublic":true,"title":"About creating key records","slug":"21733320-158332701-0/v21635006-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635006-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":15,"isPublic":true,"title":"Overview of key record states","slug":"21733320-158332701-0/v21635047-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635047-158332701.htm","hasChildren":true,"token":"","children":[{"index":16,"isPublic":true,"title":"Key record state considerations","slug":"21733320-158332701-0/v21635060-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635060-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":17,"isPublic":true,"title":"Prelive key record state","slug":"21733320-158332701-0/v21635074-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635074-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":18,"isPublic":true,"title":"Active key record state","slug":"21733320-158332701-0/v21635084-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635084-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":19,"isPublic":true,"title":"Inactive key record state","slug":"21733320-158332701-0/v21635088-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635088-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":20,"isPublic":true,"title":"Deprecated key record state","slug":"21733320-158332701-0/v21635092-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635092-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":21,"isPublic":true,"title":"Terminated key record state","slug":"21733320-158332701-0/v21635102-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635102-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":16,"isPublic":true,"title":"About backing up the KMS database files","slug":"21733320-158332701-0/v21635111-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635111-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":17,"isPublic":true,"title":"About recovering KMS by restoring all data files","slug":"21733320-158332701-0/v21635120-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635120-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":18,"isPublic":true,"title":"Recovering KMS by restoring only the KMS data file","slug":"21733320-158332701-0/v21635123-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635123-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":19,"isPublic":true,"title":"Recovering KMS by regenerating the data encryption key","slug":"21733320-158332701-0/v21635134-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635134-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":20,"isPublic":true,"title":"Problems backing up the KMS data files","slug":"21733320-158332701-0/v21635158-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635158-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":21,"isPublic":true,"title":"Solutions for backing up the KMS data files","slug":"21733320-158332701-0/v21635166-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635166-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":22,"isPublic":true,"title":"Creating a key record","slug":"21733320-158332701-0/v21635169-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635169-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":23,"isPublic":true,"title":"Listing keys from a key group","slug":"21733320-158332701-0/v21635181-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635181-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":24,"isPublic":true,"title":"Configuring NetBackup to work with KMS","slug":"21733320-158332701-0/v21635191-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635191-158332701.htm","hasChildren":true,"token":"","children":[{"index":25,"isPublic":true,"title":"NetBackup and key records from KMS","slug":"21733320-158332701-0/v21635199-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635199-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":26,"isPublic":true,"title":"Example of setting up NetBackup to use tape encryption","slug":"21733320-158332701-0/v21635205-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635205-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":25,"isPublic":true,"title":"Configuring NetBackup KMS using the KMS web application","slug":"21733320-158332701-0/v141933064-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v141933064-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":13,"isPublic":true,"title":"About using KMS for encryption","slug":"21733320-158332701-0/v21635230-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635230-158332701.htm","hasChildren":true,"token":"","children":[{"index":14,"isPublic":true,"title":"About importing KMS encrypted images","slug":"21733320-158332701-0/v30175591-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v30175591-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":15,"isPublic":true,"title":"Example of running an encrypted tape backup","slug":"21733320-158332701-0/v21635233-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635233-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":16,"isPublic":true,"title":"Example of verifying an encryption backup","slug":"21733320-158332701-0/v21635243-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635243-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":14,"isPublic":true,"title":"KMS database constituents","slug":"21733320-158332701-0/v21635253-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635253-158332701.htm","hasChildren":true,"token":"","children":[{"index":15,"isPublic":true,"title":"Creating an empty KMS database","slug":"21733320-158332701-0/v21635263-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635263-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":16,"isPublic":true,"title":"Importance of the KPK ID and HMK ID","slug":"21733320-158332701-0/v21635287-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635287-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":17,"isPublic":true,"title":"About periodically updating the HMK and KPK","slug":"21733320-158332701-0/v21635290-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635290-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":18,"isPublic":true,"title":"Backing up the KMS keystore and administrator keys","slug":"21733320-158332701-0/v21635295-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635295-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":15,"isPublic":true,"title":"Command line interface (CLI) commands","slug":"21733320-158332701-0/v21635302-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635302-158332701.htm","hasChildren":true,"token":"","children":[{"index":16,"isPublic":true,"title":"CLI usage help","slug":"21733320-158332701-0/v21635340-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635340-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":17,"isPublic":true,"title":"Create a new key group","slug":"21733320-158332701-0/v21635345-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635345-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":18,"isPublic":true,"title":"Create a new key","slug":"21733320-158332701-0/v21635358-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635358-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":19,"isPublic":true,"title":"Modify key group attributes","slug":"21733320-158332701-0/v21635373-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635373-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":20,"isPublic":true,"title":"Modify key attributes","slug":"21733320-158332701-0/v21635384-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635384-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":21,"isPublic":true,"title":"Get details of key groups","slug":"21733320-158332701-0/v21635400-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635400-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":22,"isPublic":true,"title":"Get details of keys","slug":"21733320-158332701-0/v21635416-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635416-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":23,"isPublic":true,"title":"Delete a key group","slug":"21733320-158332701-0/v21635429-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635429-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":24,"isPublic":true,"title":"Delete a key","slug":"21733320-158332701-0/v21635441-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635441-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":25,"isPublic":true,"title":"Recover a key","slug":"21733320-158332701-0/v21635454-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635454-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":26,"isPublic":true,"title":"About exporting and importing keys from the KMS database","slug":"21733320-158332701-0/v102446351-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v102446351-158332701.htm","hasChildren":true,"token":"","children":[{"index":27,"isPublic":true,"title":"Exporting keys","slug":"21733320-158332701-0/v102696096-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v102696096-158332701.htm","hasChildren":true,"token":"","children":[{"index":28,"isPublic":true,"title":"Troubleshooting common errors during an export","slug":"21733320-158332701-0/v102696814-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v102696814-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":28,"isPublic":true,"title":"Importing keys","slug":"21733320-158332701-0/v102696099-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v102696099-158332701.htm","hasChildren":true,"token":"","children":[{"index":29,"isPublic":true,"title":"Troubleshooting common errors during an import","slug":"21733320-158332701-0/v102696853-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v102696853-158332701.htm","hasChildren":false,"token":"","children":[]}]}]},{"index":27,"isPublic":true,"title":"Modify host master key (HMK)","slug":"21733320-158332701-0/v21635471-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635471-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":28,"isPublic":true,"title":"Get host master key (HMK) ID","slug":"21733320-158332701-0/v21635476-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635476-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":29,"isPublic":true,"title":"Get key protection key (KPK) ID","slug":"21733320-158332701-0/v21635485-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635485-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":30,"isPublic":true,"title":"Modify key protection key (KPK)","slug":"21733320-158332701-0/v21635480-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635480-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":31,"isPublic":true,"title":"Get keystore statistics","slug":"21733320-158332701-0/v21635489-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635489-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":32,"isPublic":true,"title":"Quiesce KMS database","slug":"21733320-158332701-0/v21635501-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635501-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":33,"isPublic":true,"title":"Unquiesce KMS database","slug":"21733320-158332701-0/v21635506-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635506-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":34,"isPublic":true,"title":"Key creation options","slug":"21733320-158332701-0/v21635511-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635511-158332701.htm","hasChildren":false,"token":"","children":[]}]},{"index":16,"isPublic":true,"title":"Troubleshooting KMS","slug":"21733320-158332701-0/v21635519-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635519-158332701.htm","hasChildren":true,"token":"","children":[{"index":17,"isPublic":true,"title":"Solution for backups not encrypting","slug":"21733320-158332701-0/v21635540-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635540-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":18,"isPublic":true,"title":"Solution for restores that do not decrypt","slug":"21733320-158332701-0/v21635558-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635558-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":19,"isPublic":true,"title":"Troubleshooting example - backup with no active key record","slug":"21733320-158332701-0/v21635574-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635574-158332701.htm","hasChildren":false,"token":"","children":[]},{"index":20,"isPublic":true,"title":"Troubleshooting example - restore with an improper key record state","slug":"21733320-158332701-0/v21635614-158332701","cdnUrl":"https://dddmehhocoli6.cloudfront.net/docs/Prod/netbackup/10.1.1/21733320-158332701-0/v21635614-158332701.htm","hasChildren":false,"token":"","children":[]}]}]},"isContentOnly":false}],"$L3f"]

NetBackup key management service

Feedback

Feedback