Hello,
Playing with MSEO 6.1 and getting ready to implement it. It's going well, but one last thing is making me hold off on it; proper MSEO Datastore protection.
The user guide says be sure to backup the datastore regularly unencrypted because if you lose your keys (including the keys to decrypt the datastore backup) you are sol. That makes sense.
My problem is if I perform an unencrypted backup of MSEO to a tape that goes offsite (possibly with other MSEO encrypted data on it as well), if that box of tapes gets lost in transit, it contains my unencrypted MSEO backup that can easily be restored by someone else. That along with other MSEO encypted tapes in that box and all of my encrypted data is open for whoever finds it. Right?
Or say I perform a unencrypted backup (or export of my licenses) and keep locally, in a disaster recovery scenario, locally isn't there anymore. All I would be left with was encrypted offsite tapes with no licenses to decrypt. Right?
Am I just confused or missig some glaring point?
I suppose it's all about balancing the risks involved and deciding which one we can live with.
Any advice, pointers?