Importing and exporting keys between clusters – HP Secure Key Manager User Manual

5.

Click Save.

NOTE:

This feature is

immediately enabled when you select Web Admin User Authentication. You

will be logged out of the Management Console and will need a valid client certificate to
return. If needed, you can use the edit ras settings command from the CLI to disable this
feature without presenting a certificate.

Backup procedures for keys, configurations, and certificates

Importing and exporting keys between clusters

Use the SKM backup/restore feature to export one key at a time from Cluster #1, and import it to
Cluster #2. When a key is exported, the corresponding usage permissions are also exported. To use
the imported key, it is necessary to set permissions on Cluster #2’s library clients. Also, when a key
is imported (restored) to a cluster, it must be manually replicated to other nodes in that cluster.

NOTE:

The exported key remains accessible to Cluster #1; the key has been copied, not moved.

1.

Determine the key name to be exported.

Each piece of media has a unique key name, containing the media’s barcode, and the UTC
timestamp when block 0 of that media was written.

NOTE:

The following is one example of how to filter for a specific key. Other filters are available,
and may work better in different situations.

a.

From the Security window, in the Keys menu on the left, select Keys.

b.

In the list of keys displayed, select Filtered By Key Name where value contains <enter the
barcode>.

Secure Key Manager

81