Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup™ Security and Encryption Guide
  3. Section III. Encryption of data at rest
  4. NetBackup key management service configuration
  5. Configure NetBackup KMS
NetBackup™ Security and Encryption Guide

Configure NetBackup KMS

Use this procedure to configure NetBackup KMS server in NetBackup using web UI.

To configure NetBackup KMS server

  1. On the left, click Security > KMS.
  2. Click Configure.
  3. On the Configure key management server dialog box, click the NetBackup KMS option.
  4. Specify the following KMS server attributes:
    • Enable for backup - Enable the option to use the keys from this KMS configuration for backup.

    • Server name - Enter the primary server name.

    • Description - Specify the details of the KMS configuration.

    • Priority - Define the priority that needs to be given to this server during encryption or decryption.

    • Key configuration - Specify HMK and KPK.

    • Passphrase - Use either a random passphrase or specify the passphrase for HMK and KPK.

  5. Click Configure.

Feedback

Was this page helpful?
Previous

Troubleshooting example - restore with an improper key record state

Next

Add key groups

Feedback

Was this page helpful?