Quantum Q-EKM Podręcznik Użytkownika Pobierz pdf (Strona 29)

Planning Your Q-EKM Environment

Disaster Recovery Planning

Quantum Encryption Key Manager User’s Guide 16

Disaster Recovery Planning

Quantum recommends that you plan for disaster recovery in the event

that your primary and secondary servers become unavailable.

Disaster recovery requires that you maintain, in a secure location,

current, non-Q-EKM encrypted copies of the following files:

• ClientKeyManagerConfig.properties

• EKMKeys.jck

• KeyManagerConfig.properties

• library_serialnum

• library_wwnamekey

• QEKMIEKey<librarySN>.pk12

The files are all in the root QEKM directory located here:

Successful recovery requires the following two things:

• The backed-up files must be current. Any time the keystore or

configuration files are changed (i.e., creating, importing, or exporting

keys or certificates), you must remember to save a backup. If you

back up your files regularly as recommended, this should not be an

issue (see Backing Up Keystore and Configuration Data

on page 15).

• The backup files must not be encrypted with Q-EKM. If the primary

and secondary servers are unavailable, the encrypted files will not be

able to be decrypted and reused in the disaster recovery server.

Upon failure of the Q-EKM server, Quantum Support can set up a new

“disaster recovery” Q-EKM server or servers to replace the ones that

became unavailable.

Windows

c:\Program Files\Quantum\QEKM

Linux

/opt/Quantum/QEKM

1 2 ... 24 25 26 27 28 29 30 31 32 33 34 ... 92 93

Brak uwag

Quantum Q-EKM Podręcznik Użytkownika Strona 29