Answer

Third Party KMS

Forum|Forum|3 years ago
April 22, 2022
1 reply
616 views

+10

Mohit Chordia
Novice

Hi Team,

If we use third party Key management server such as AWS KMS with Commvault , will there be any impact on backups and recovery throughput or performance .

Iam assuming that Encryption keys retrieval is faster when its present in CS database as compared to retrieve keys from third part KMS ? Let me know if my understanding is not right .

Also , during a backup or recovery job does encryption keys retrieval from CS DB or third party KMS happen only 1 time or it will be continuous for each and every block/chunk ?

Best answer by Jos Meijer

Yes native kms is faster then 3rd party kms due to local data vs data over remote connection. Doesn't have to take much/noticably longer, all depends on your connection with kms.

Kms is based on the process described here:

https://documentation.commvault.com/11.24/essential/7814_third_party_key_management.html

I believe it is a per backup/restore job retrieval. Per block is not needed as the kms key is linked on a global dedup storage pool or a storage policy copy level

If you have a question or comment, please create a topic

+16

Jos Meijer
Community All Star
Answer
Forum|Forum|3 years ago
April 23, 2022

Yes native kms is faster then 3rd party kms due to local data vs data over remote connection. Doesn't have to take much/noticably longer, all depends on your connection with kms.

Kms is based on the process described here:

https://documentation.commvault.com/11.24/essential/7814_third_party_key_management.html

I believe it is a per backup/restore job retrieval. Per block is not needed as the kms key is linked on a global dedup storage pool or a storage policy copy level

Like

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded