Mita201
ADSM.ORG Senior Member
Hi,
I am wondering of what is the practical use of having backups encrypted on TSM server and let TSM server itself manage keys?
There is an option ENABLECLIENTENCRYPTKEY, that you can use with BA clients and API clients (it is only available option for ISP for Databases, SQL and Oracle) so backups are encrypted on client side, but backup and the keys resides on TSM server.
If I have encrypted backup I would like to have keys stored separately from backup, or at least passphrase for the key.
I see no point of having them "in same basket".
Anyone thinks differently?
I am wondering of what is the practical use of having backups encrypted on TSM server and let TSM server itself manage keys?
There is an option ENABLECLIENTENCRYPTKEY, that you can use with BA clients and API clients (it is only available option for ISP for Databases, SQL and Oracle) so backups are encrypted on client side, but backup and the keys resides on TSM server.
If I have encrypted backup I would like to have keys stored separately from backup, or at least passphrase for the key.
I see no point of having them "in same basket".
Anyone thinks differently?