Chat now with support
Chat with Support

DR Series Software 4.0.4 - Administration Guide

Introducing the DR Series system documentation Introducing the DR Series system Setting up the DR Series system Configuring the DR Series system settings Managing containers Managing replications Monitoring the DR Series system Using GlobalView Configuring and using Rapid NFS and Rapid CIFS Configuring and using Rapid Data Access with NetVault Backup and with vRanger Configuring and using RDA with OST
Understanding RDA with OST Guidelines Terminology Supported RDA with OST software and components Best Practices: RDA with OST and the DR Series System Setting client-side optimization Configuring an LSU Installing the RDA with OST plug-in Configuring DR Series system information using NetBackup Backing up data from a DR Series system with NetBackup Using Backup Exec with a DR Series system (Windows) Understanding the OST CLI commands Understanding RDA with OST Plug-In Diagnostic Logs Collecting diagnostics by using a Linux utility Guidelines for gathering media server information
Configuring and using VTL Configuring and Using Encryption at Rest Support, maintenance, and troubleshooting Supported Ports in a DR Series system About us

Understanding the encryption process

The overall steps for how Encryption at Rest is enabled and used in the DR Series system are described below.

  1. Enabling encryption.

    Encryption is disabled by default on a factory-installed DR Series system (running version 3.2 software or later) or a DR Series system that has been upgraded to version 3.2 from a previously released version. An administrator can enable encryption by using the GUI or CLI.

    Encryption is set at the storage group level.

  2. Setting a passphrase and setting the mode.

    When defining encryption for a storage group, a passphrase is set. This passphrase is used to encrypt the content encryption keys, which adds a second layer of security to the key management. At this time, the mode is also set. The default key management mode is “internal” mode, in which key rotation happens periodically as specified by the set key rotation period.

  3. Encryption process.

    After encryption is enabled, the data in the storage group that gets backed up is encrypted and is kept encrypted until it is expired and cleaned by the system cleaner. Note that the encryption process is irreversible.

  4. Encryption of pre-existing data.

    Any pre-existing data will also be encrypted using the currently set mode of key management. This encryption occurs as part of the system cleaner process. Encryption is scheduled as the last action item in the cleaner workflow. You must launch the cleaner manually using the maintenance command to reclaim space. It then encrypts all pre-existing unencrypted data. The cleaner can also be scheduled as per the existing pre-defined cleaner schedule.

    NOTE: The cleaner can take some time to start the encryption process if the system is nearing full system capacity. Encryption starts only after the cleaner processes data slated for cleaning and the related logs. This ensures that space reclamation is prioritized when free space is low and also ensures that data stores are not redundantly encrypted.

Refer to the DR Series System Command Line Interface Reference Guide for information about the CLI commands used for encryption.

Support, maintenance, and troubleshooting

The DR Series system GUI provides various information and tools that can help you better understand the current state of your system and that provide basic, support, maintenance, and troubleshooting functionality.

Using the DR Series system support options

In the DR Series system GUI, the Support page provides valuable support options and functionality to help you maintain the state of your DR Series system. These Support options include Diagnostics and Software Upgrades. From the Support page, you can also reboot or shut down the system.

Viewing support information

The Support page displays valuable support information for your system. This information can be useful if you need to contact Technical Support for any technical assistance.

To view the Support page, follow these steps.

  1. In the left navigation menu, click Support.
  2. On the Support page, you can view the following information:
    • Product Name—The DR Series system product name.
    • Software Version—DR Series system software version installed.
    • Service Tag—DR Series system appliance bar code label.
    • Last Diagnostic Run—Timestamp of latest diagnostics log file.
    • BIOS Version—current version of installed BIOS.
    • MAC Address—current address in standard two-digit hexadecimal grouping format.
    • iDRAC IP Address—current IP address of iDRAC (if applicable).
    • NIC Ports—displays information about bonded ports only (if the 10-GbE NICs are installed, it only displays information about the two supported 10–GbE ports):
      • Eth0 MAC address and port speed
      • Eth1 MAC address and port speed
      • Eth2 MAC address and port speed in
      • Eth3 MAC address and port speed in
    • This page also displays information about the FC cards on PCI slot.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating