Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  3. Veritas NetBackup™ Administrator's Guide, Volume I
  5. Section II. Configuring hosts
  7. Configuring Host Properties
  9. Configuration options for NetBackup clients
  11. CRYPT_KEYFILE option for NetBackup clients
Veritas NetBackup™ Administrator's Guide, Volume I

CRYPT_KEYFILE option for NetBackup clients

The CRYPT_KEYFILE entry specifies the file that contains the encryption keys on NetBackup clients. NetBackup creates this entry automatically in the /usr/openv/netbackup/bp.conf file on a UNIX client when the bpinst_crypt command is run on the NetBackup master server.

See the NetBackup Security and Encryption Guide.

Table: CRYPT_KEYFILE information

Usage

Description

Where to use

On NetBackup clients.

How to use

The CRYPT_KEYFILE entry applies to clients with the NetBackup Encryption option installed. Do not alter the entry or create it manually unless it was accidentally deleted.

Use the nbgetconfig and the nbsetconfig commands to view, add, or change the option.

For information about these commands, see the NetBackup Commands Reference Guide.

Use the following format:

CRYPT_KEYFILE = directory

The default values follow:

  • On Windows systems

    install_path\bin\keyfile.dat

    Where install_path is the directory where NetBackup is installed and by default is C:\Program Files\Veritas.

  • On UNIX systems

    /usr/openv/netbackup/keyfile

This entry should appear only once in the configuration file.

Equivalent Administration Console property

NetBackup Management > Host Properties > Double-click on client > Encryption.

More Information

Encryption properties

Feedback

Was this page helpful?
Previous

CRYPT_LIBPATH option for NetBackup clients

Next

DO_NOT_RESET_FILE_ACCESS_TIME option for NetBackup clients

Feedback

Was this page helpful?