NBU security questions
Hello,
We have a question, if any expert can give us their opinion:
Is there any advantage to using an ECA (external certified authority) or NBCA (NetBackup Certified authority), are both methods safe? Pros and cons?
And the second issue about encryption, if we have a Flex Appliances, where we can enable encryption at the WORM Storage Server level, is there any need to manage the encryption keys with a KMS, or with an external KMS? at this point we are a little confused
In short, we do not know if the most practical thing is to let NBU automatically manage the certificates (NBCA) and at the data at rest encryption level in the same way. Because if the encryption keys are lost or are not managed correctly, then the data is unrecoverable.
Thanks for your comments.
Greetings