Results 1 to 4 of 4
  1. #1

    Question Changing Client side encryption password.

    Is it possible to change the password used for client side encryption? Auditors have asked this question of me. My take is that I could deleted the stored, encrypted password and back up a file to generate a new one but this would then cause previously encrypted backups to become unrecoverable. is thsi correct?

    Al

  2. #2
    Moderator moon-buddy's Avatar
    Join Date
    Aug 2005
    Location
    Somewhere in the US
    Posts
    5,862
    Thanks
    4
    Thanked 228 Times in 223 Posts

    Default

    Quote Originally Posted by AlanDavenport View Post
    Is it possible to change the password used for client side encryption? Auditors have asked this question of me. My take is that I could deleted the stored, encrypted password and back up a file to generate a new one but this would then cause previously encrypted backups to become unrecoverable. is thsi correct?

    Al
    Are you referring to the built in TSM Client data (not node password encryption) encryption around DES or AES?

    If this is what you are referring to, the key, I believe, is created around the node's unique Global UID and is created at the node's registration time. Essentially, the key cannot be changed (but don't quote me on this, I may be remembering it wrong), and changing the node's password (regenerating it) does not affect any data previously stored.

    Does anyone know more about this?
    Ed

  3. #3

    Default

    Quote Originally Posted by moon-buddy View Post
    Are you referring to the built in TSM Client data (not node password encryption) encryption around DES or AES?
    Yes, that is what I am referring to.

  4. #4
    Senior Member
    Join Date
    Jul 2008
    Location
    Dallas, Texas
    Posts
    207
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Default

    Don't quote me on this, but if I recall correctly, if you change the encryption password, it will affect any data stored after the change. Data previously backed up encrypted will query for the original encryption password it was backed up with. It has been awhile since I researched this for a client.

    If you don't have the previous encryption key, the data will not be restoreable.

Similar Threads

  1. Clarifications from Client side...
    By worldissmall in forum Others
    Replies: 4
    Last Post: 05-31-2008, 11:20 AM
  2. Problems after changing iscadmin password
    By heiermann in forum ISC -Integrated Solution Console
    Replies: 0
    Last Post: 12-06-2007, 08:34 AM
  3. Can a Client Query a backup set name from there side?
    By tsmhelum in forum Backup / Archive Discussion
    Replies: 1
    Last Post: 11-08-2007, 11:18 AM
  4. Can't view operational reports after changing admin password
    By bjorgenson in forum TSM Reporting & Monitoring
    Replies: 1
    Last Post: 04-21-2006, 02:16 PM
  5. Client encryption ?
    By bipsen in forum Backup / Archive Discussion
    Replies: 0
    Last Post: 10-28-2003, 05:30 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •