cancel
Showing results for 
Search instead for 
Did you mean: 

Character restrictions in NetBackup KMS

hiromasa_y2g
Level 3
Employee

Hi all,

I'm trying to configure Netbackup KMS with encryption enabled when configuring NBU8.2 CloudCatalyst.
Is there a character limit when setting the following items of NetBackup KMS?

- Host Master Key(HMK) ID
- HMK Passphrase
- Key Protection Key(KPK) ID
- KPK Passphrase
- Key name
- Key Passphrase

NBU8.2 CloudCatalyst server
Cloud:NEC Cloud IaaS

thanks,

2 REPLIES 2

Nicolai
Moderator
Moderator
Partner    VIP   

hi @hiromasa_y2g 

I would say all base64 character apply.

Regarding the length of the passphrases, they can be quite long.  I have tested 192 character long passphrases without issues. But as strings are getting longer and longer the copy and paste part become a issue of itself. You want the passphrases to be known and valid if recovery is required as part of a DR

This was the command I used to generate passphrases on Linux  : openssl rand -base64 78 | sed ':a;N;$!ba;s/\n//g'

hi Nicolai,

I was able to confirm the key name by the status code.


NetBackup KMS status code: 1287
Message: Invalid characters found in name: %s\n -- Valid character set: A-Z a-z 0-9, _, -, :, . and space -- Name should start with A-Z or a-z or 0-9

however, For HMKID, KPKID and passphrase, I did not get an error when I typed any character and the number of characters exceeded 1000.