Sorry, but Encryptkey is not what I'm looking for.
Encryptkey has two settings "SAVE" (the default) and "PROMPT". This value is
not used to suply transparrent enctryption. It is simply used to tell the TSM
client software whether to store the encrypted password in the registry. Even
with save you still are prompted one time where you have to manually enter the
password. It is then stored in the local clients registry and not the TSM
server. Also, a key is not generated for you.
Transparrent encryption with the API the key is generated for you and it is
stored on the TSM server.
Below is from the client help:
1.3.39 Encryptkey
The encryptkey option specifies whether to save the encryption key
password locally when performing a backup-archive operation or
whether to prompt for the encryption key password. The encryption
key password is saved to the Windows Registry in encrypted format.
Tivoli Storage Manager client encryption allows you to enter a
value of up to 63 characters in length. This encryption password
needs to be confirmed when encrypting the file for backup, and
also needs to be entered when performing restores of encrypted
files.
Note: For local backupset restore of encrypted files, you cannot
use a saved encryption key password. You are always prompted
for the encryption key.
+---- Caution ---------------------------------------------------+
If the encryption key is not saved in the Windows Registry, and
you have forgotten the key, your data will be unrecoverable.
+----------------------------------------------------------------+
If you set the encryptkey option to save, you are only prompted
the first time you perform an operation. Thereafter, Tivoli
Storage Manager does not prompt for the password.
The Web client saves the encryption key password in the Windows
Registry. If you do not save the encryption key password, you are
prompted for the initial encryption key password when you begin
encryption processing.
You can encrypt the data that is sent to the server during a
backup or archive operation using standard encryption. If you use
the encryption feature to encrypt your data during backup or
archive, you must have the encryption key in order to restore or
retrieve the data. If the encryption key is not available on the
archive, you must have the encryption key in order to restore or
retrieve the data. If the encryption key is not available on the
client machine (via the encryptkey option) and you forgot the
encryption key, then the data cannot be restored or retrieved
under any circumstances.
Supported Clients
This option is valid for all Windows clients.
Options File
Place this option in the client options file (dsm.opt). You can
set this option on the Authorization tab, Encryption Key Password
section of the Preferences editor.
Syntax
.-save---.
>>-ENCRYPTKey-+--------+---------------------------------------><
'-prompt-'
Parameters
save
Specifies that you want to save the encryption key password to
the local Windows Registry. If you set the encryptkey option to
save, you are only prompted the first time you perform an
operation. Thereafter, Tivoli Storage Manager does not prompt
for the encryption password. This is the default.
prompt
Tivoli Storage Manager prompts for the encryption password for
each backup, archive, and restore operation.
Examples
Options file:
encryptkey prompt
Richard Sims <rbs AT BU DOT EDU> wrote:
Check the value of your client ENCryptkey option, which is supposed
to provide what you seek.
---------------------------------
Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great rates
starting at 1¢/min.
|
