Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Section III. Encryption of data at rest
  4. Data at rest encryption security
  5. Configuring standard encryption on clients
  6. About configuring standard encryption from the server
  7. About creating encryption key files on the clients
NetBackup™ Security and Encryption Guide

About creating encryption key files on the clients

Use the following guidelines to create encryption key files on the clients:

  • If the server is in a cluster and is also an encryption client, all nodes in the cluster must have the same key file.

  • The bpkeyutil command sets the cipher-based encryption key file and pass phrase on each NetBackup Encryption client.

    • For a Windows server, the full path to the command is as follows:

      install_path\NetBackup\bin\bpkeyutil
    • For a UNIX server, the full path to the command is as follows:

      /usr/openv/netbackup/bin/bpkeyutil

Feedback

Was this page helpful?
Previous

About configuring standard encryption from the server

Next

Creating the key files

Feedback

Was this page helpful?