VOX

Many tape libraries also detect the encryption via the firmware and when you view the media in the tape library web GUI it also reports which tapes are encrypted

Hope this also helps

Did none of the procedures listed in this TechNote work for you?

How to verify KMS encrypted the backup
 http://www.symantec.com/docs/TECH127166

(Did you know this TechNote existed?)

There's also this TechNote based on pages 324-325 from the Encryption Guide:

Example of verifying an encryption backup
 http://www.symantec.com/docs/HOWTO46852

Symantec NetBackup 7.5 Security and Encryption Guide
 http://www.symantec.com/docs/DOC5185

Chris,

This is what took me 2 weeks to wade through, and in the TechNote (TECH127166) you provided .

OPTION 1 Was not great (Since I had the KeyGroup / Key / Pool and Policy all called ENCR_tmp), until I looked further down in the output from "bpimagelist" command and seen the light.

OPTION 2 shows me "0" for the "Encryption Key Tag" in the GUI, this is what made it so difficult to track down.

OPTION 3 I had also found a different TechNote that had a different suggestion of removing the Key and try the restore, but again the TechNote had notes saying output should look like this "blah..blah..blah.., and that is not what I see :(

and as far as HOWTO46852 again it points me to OPTION 2 above :(

and of course pages 324-325 from the Encryption Guide are the same as OPTION 2 above.

Are you seeing why it took me 2 weeks to track this down.. to verify.

Regards,

Mike.

Mark,

Thanks for the feedback.. as you say "Many tape libraries" detect encryption, mine does not fall into the Many catagory.

Regards,

Mike

Thanks for that very valuable feedback, Mike!  I'll have to see if we can incorporate your information into our documentation (or at least a TechNote) and try to save other folks a couple weeks.

Chris,

Where do I download patch releases to apply this, I can only see the 7.5 Base in the Software download area?

When I get access to the patch, I will apply this today and test it.

Mike

All patches come from the support site:

http://www.symantec.com/docs/TECH194138

See this 'Featured' post as well:

https://www-secure.symantec.com/connect/forums/netbackup-7504-netbackup-75-maintenance-release-4-now...

Chris,

It now works as advertised!!

Thanks for the feedback.

Regards,

Mike

I'm just sorry I couldn't tell you this two weeks ago!

Hello To all,

I got this same issue with the KMS and I applied the service maintenance 7.5.04 and I still have this issue related with the "0" result on the the Encription Key tag Gui, so in my case updating to this latest maintenance pack didn't work, I have already opened a ticket with Symantec support but so far no help was provided, what else can be done to resolve this issue?

in case that any screen shot needs to be uploading for more reference please let me know.

thanks in advance for any help you could provide

RReyes76,

Did you test some of the other steps in the Tech Docs above, to verify you really are setup for encryption, first test is the commands I had listed in this original thread, should also work in Windows (except the grep command)

and the 2nd thing to test is outlined in the TechDoc Chris had first posted, it involved deactivating the KMS key (do not delete) and test a restore, if restore still works, then for some reason your KMS install is not fully setup.

Let me know if you need the Step by Step for the KMS setup.

Regards,

Mike.

Windows GUI may still be an issue even at 7.5.0.4.  Tell your TSE you think you may need the EEB listed under Etrack 2962480 and send them your screen shot.