Managing standard encryption configuration options
The following table describes the three encryption-related configuration options for the standard encryption that can exist on a NetBackup client.
Ensure that the options are set to the appropriate values for your client.
Table: Three encryption-related configuration options
Option | Value | Description |
|---|
CRYPT_OPTION = option
|
| Defines the encryption options on NetBackup clients. The possible values for option follow:
|
|
| denied|DENIED
| Specifies that the client does not permit encrypted backups. If the server requests an encrypted backup, it is considered an error.
|
|
| allowed|ALLOWED
| (the default value) Specifies that the client allows either encrypted or unencrypted backups.
|
|
| required|REQUIRED
| Specifies that the client requires encrypted backups. If the server requests an unencrypted backup, it is considered an error.
|
CRYPT_KIND = kind
|
| Defines the encryption kind on NetBackup clients. The kind option can be set to any of the following option values.
|
|
| NONE
| Neither standard encryption nor legacy encryption is configured on the client.
|
|
| STANDARD
| Specifies that you want to use the cipher-based 128-bit encryption or 256-bit encryption. This option is the default value if standard encryption is configured on the client.
|
|
| LEGACY
| Specifies that you want to use the legacy-based encryption, with 40-bit DES or 56-bit DES.
|
CRYPT_CIPHER = cipher
|
| Defines the cipher type to use. It can be set to any of the following option values.
|
|
| AES-128-CFB
| 128-bit Advanced Encryption Standard. This is the default value.
|
|
| BF-CFB
| 128-bit Blowfish
|
|
| DES-EDE-CFB
| Two Key Triple DES
|
|
| AES-256-CFB
| 256-bit Advanced Encryption Standard
|
