03-01-2011 10:36 PM
Good day
I'm running Netbackup 6.5.2A on Windows 2003 SP2, 64 bit. I would like to enable client side encryption, what is needed in order to do this, besides turning it on in the policy?
Also, is it possible to encrypt VM backups, as the option is greyed out. The VM's are getting staged to disk before going to tape.
Kind regards
NetB_User
Solved! Go to Solution.
03-02-2011 01:30 PM
I agree with Chris. You need to confirm that you are actually using 6.5 license keys. Using older keys (even 5.1) will work, but any new functionality in 6.5 cannot be used.
NetBackup (tm) 6.5 Release Impact Bulletin: http://www.symantec.com/docs/TECH51321
Changes to NetBackup licensing
Several significant changes have been made to NetBackup licensing that
consolidate and simplify the offerings. The following list provides three key
examples of these changes, but is not a comprehensive list of all licensing
changes.
■ NetBackup Standard Client
The NetBackup Standard Client replaces the NetBackup Protect Server
client license. In addition, PureDisk Client, Bare Metal Restore and the
Client Encryption Option are also included in the Standard Client license.
Please note that these features are still separately installed but enabled
with a single Standard Client license key.
■ Bare Metal Restore (BMR) is now included in the Standard Client and is
no longer available for separate purchase. If you have purchased BMR
you will now get this feature in your Standard Client license.
■ Client Encryption Option is now included in the Standard Client and is
no longer available for separate purchase. If you have purchased the
Client Encryption Option you will now get this feature in your Standard
Client license. Please note this does not include nor impact the Media
Server Encryption Option.
Steps to install & config can be found in Security and Encryption Guide: http://www.symantec.com/docs/TECH52825
03-01-2011 10:50 PM
You will need to have encryption license
if you have so
bpinst -ENCRYTION command in master server and bpkeyutil command in netbackup client shall help you
03-01-2011 11:00 PM
I was under the impression that Client side encryption was free?
I also checked on the Master server under licences, and I can see the Encyption license there (see attachment).
03-02-2011 11:04 AM
Client Encryption Option should be included from NetBackup....6.5, I think? If you have an up to date license, it should be activated.
All you should need to do is generate a key on the client by running bpkeyutil from a command window. Find bpkeyutil.exe in C:\Program Files\VERITAS\NetBackup\bin.
A good overview of CEO can be found in this TechNote:
03-02-2011 01:30 PM
I agree with Chris. You need to confirm that you are actually using 6.5 license keys. Using older keys (even 5.1) will work, but any new functionality in 6.5 cannot be used.
NetBackup (tm) 6.5 Release Impact Bulletin: http://www.symantec.com/docs/TECH51321
Changes to NetBackup licensing
Several significant changes have been made to NetBackup licensing that
consolidate and simplify the offerings. The following list provides three key
examples of these changes, but is not a comprehensive list of all licensing
changes.
■ NetBackup Standard Client
The NetBackup Standard Client replaces the NetBackup Protect Server
client license. In addition, PureDisk Client, Bare Metal Restore and the
Client Encryption Option are also included in the Standard Client license.
Please note that these features are still separately installed but enabled
with a single Standard Client license key.
■ Bare Metal Restore (BMR) is now included in the Standard Client and is
no longer available for separate purchase. If you have purchased BMR
you will now get this feature in your Standard Client license.
■ Client Encryption Option is now included in the Standard Client and is
no longer available for separate purchase. If you have purchased the
Client Encryption Option you will now get this feature in your Standard
Client license. Please note this does not include nor impact the Media
Server Encryption Option.
Steps to install & config can be found in Security and Encryption Guide: http://www.symantec.com/docs/TECH52825