This chapter describes the operations that a user who has been given a Backup Operator role can perform. If you have been assigned other roles, refer to the appropriate chapter for instructions on performing the specific role.
As the Backup Operator, you are responsible for securing and storing data and their keys.
The Backups List menu option allows the Backup Operator to:
View the history of the Backups and confirm their destruction status
Create Backups.
To view Backup files history:
From the Backups menu, select Backup List. The Backup List screen is displayed.
If you want more detailed information on a Backup, highlight the Backup and click the Details button. For more information, refer to "Viewing Backup Details".
Click the Create Backup button to create a Backup. For more information, refer to "Creating a Backup".
Click the Confirm Destruction button to confirm the destruction of a Backup. For more information, refer to "Confirming a Backup's Destruction".
The Backup Details dialog box is used to view the details of a Backup file.
Note: Backup files are downloaded to the machine where the OKM Manager is running when the backup is created. |
To view the details of a Backup file:
From the Backups List screen, double-click the Backup entry for which you want more information or highlight the Backup entry and click the Details button. The Backup Details dialog box is displayed, with all fields disabled.
The fields and their descriptions are given below:
Backup ID
Displays a system-generated unique identifier that distinguishes each Backup file.
KMA ID
Displays the KMA on which this Backup file is generated.
Created Date
Displays the date and time when the Backup file was created.
Completed Date
Displays the date and time when the Backup file was completed.
Downloaded Date
Displays the date and time the Backup file was downloaded.
Destroyed Date
Displays the date when the Backup file was destroyed.
Destruction Status
Indicates the status of the backup with respect to its destruction.
Destruction Comment
Displays user-supplied information on the Backup file's destruction.
Click the Close button to close this dialog box.
Important – The Security Officer must back up Core Security Key material before the Backup Officer can create a backup. See "Creating a Core Security Backup".
At any given time, there is only one Backup file and one Restore file on a KMA.
This option gives you the ability to create a Backup that consists of two files: a Backup file and a Backup key file.
To create a Backup:
From the Backup List screen, click the Create Backup button. The Create Backup dialog box is displayed.
Note: Backup File and Backup Key File names are automatically generated. You can, however, edit the names. You can also click the Browse button to select a destination path. |
Click the Start button to create the Backup file and download the Backup key file to the user-specified destination.
When the Backup is completed, a message indicating this is displayed. Click the Close button to close this dialog box.
You are returned to the Backup List screen, where the new created Backup File is displayed.
To confirm a backup's destruction:
From the Backup List screen, highlight the Backup you want to destroy and click the Confirm Destruction button. The following dialog box is displayed, confirming that you want to update the destruction status for the selected Backup. Before proceeding, ensure that all copies of the corresponding Backup Key file have been manually destroyed.
If you are certain that all copies of the corresponding backup key file have been manually destroyed, click the Yes button. Otherwise, click the No button to stop the process.
If you chose the Yes button, the backup and the Data Units that were associated with it are completely destroyed.
The KMA List menu option allows you to:
View KMAs (refer to "Viewing KMAs")
Create a KMA (refer to "Creating a KMA")
Modify a KMA's information (refer to "Viewing/Modifying a KMA's Details")
Delete a KMA (refer to "Logging the KMA Back into the Cluster")
Modify a Key Pool size
Note: Backup Operators can view KMA details and modify Key Pool sizes. |
A Backup Operator can also:
View Audit Event List
View the System time
View the KMA locking status
Access the KMA List screen.
For procedures on viewing the Audit Log, refer to "Audit Event List Menu".
For procedures on viewing the KMA locking status, refer to "Lock/Unlock KMA".
For procedures on using the KMA List information, refer to "KMA List Menu".
For procedures on querying KMA performance information about KMAs in this OKM cluster, refer to "KMA Performance List Menu".
For procedures on querying load information about the KMA the GUI is connected to, refer to "Current Load Menu".