I'm trying to configure Netbackup KMS with encryption enabled when configuring NBU8.2 CloudCatalyst.
Is there a character limit when setting the following items of NetBackup KMS?
- Host Master Key(HMK) ID
- HMK Passphrase
- Key Protection Key(KPK) ID
- KPK Passphrase
- Key name
- Key Passphrase
NBU8.2 CloudCatalyst server
Cloud:NEC Cloud IaaS
I would say all base64 character apply.
Regarding the length of the passphrases, they can be quite long. I have tested 192 character long passphrases without issues. But as strings are getting longer and longer the copy and paste part become a issue of itself. You want the passphrases to be known and valid if recovery is required as part of a DR
This was the command I used to generate passphrases on Linux : openssl rand -base64 78 | sed ':a;N;$!ba;s/\n//g'
I was able to confirm the key name by the status code.
NetBackup KMS status code: 1287
Message: Invalid characters found in name: %s\n -- Valid character set: A-Z a-z 0-9, _, -, :, . and space -- Name should start with A-Z or a-z or 0-9
however, For HMKID, KPKID and passphrase, I did not get an error when I typed any character and the number of characters exceeded 1000.