Skip to main content
commvault.com commvault.com
Solved

Encryption Key management via built in Commvault

  • April 22, 2022
  • 1 reply
  • 1788 views
Aspiroff93
Bit
Forum|alt.badge.img

Hello All,

 

We are working on encrypting all of our jobs (backups) via software encryption on the policies. While setting it up I was curious on how the option “No Access” works. Would we be given the option to store the decryption key somewhere else or is it all stored in Commvault regardless? If it is stored in Commvault how do we get to the key to save it for later decryption use. I know “Via Media Password” has it stored in the library and now I wonder if it is possible to get to that decryption key as well.

 

Thank you all for the help! (Sorry if I didn’t make it clear, I will try to clarify if there is any confusion)

Best answer by Jos Meijer

No access results in not writing the access key tot the media, the commserve database is needed to access the encrypted data. With the commserve internal kms system the decryption key remains hashed in the commserve database. There is no way to get this except with help of support/dev. So in order to ensure recoverability later on, regularly save a DR backup to a location which is safe and within your reach.

View original
Did this answer your question?
If you have a question or comment, please create a topic

1 reply

Jos Meijer
Commvault Certified Expert
Forum|alt.badge.img+17
  • Jos MeijerCommvault Certified Expert
  • Commvault Certified Expert
  • 638 replies
  • Answer
  • April 23, 2022

No access results in not writing the access key tot the media, the commserve database is needed to access the encrypted data. With the commserve internal kms system the decryption key remains hashed in the commserve database. There is no way to get this except with help of support/dev. So in order to ensure recoverability later on, regularly save a DR backup to a location which is safe and within your reach.

Mike Struening
1 person likes this
  • Mike Struening
    Mike Struening

Most helpful members this week

Terms & ConditionsCookie settings

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings