Skip to main content
Code42 Support

Disable data key sharing

Available in:

  • CrashPlan PRO
    • Standard
    • Premium
    • Enterprise
Applies to:

Overview

This article describes how to disable data key sharing. Data keys are the raw bytes used to encrypt backup data. By default, data keys only exist on the source device and a trusted authority server. By default, an authority server shares data keys with storage servers that request them for purposes of maintenance or web restore.

To improve system security, you can disable sharing data keys. In hybrid installations, you might disable key sharing because you do not want to send data keys off-premises regardless of the functional limitations.

Considerations

When data key sharing is disabled, users cannot perform web restores. However, users can still perform restores from the Code42 app on their devices, and maintenance can still run on storage server archives.

Disable data key sharing

  1. Sign in to the administration console.

  2. Double-click the logo in the upper-left corner of the administration console.
    The command-line interface appears in the administration console.
  3. To view the current value of the data key sharing setting in your Code42 environment, enter the following prop.show command:

prop.show c42.dataKeySharing.enabled

A returned value of 0 properties indicates that data key sharing is enabled by default.

  1. Enter the followingprop.setcommand at the top of the command-line interface to disable data key sharing:

prop.set c42.dataKeySharing.enabled false save all

Overwriting values
Setting a new value with a prop.set command overwrites any existing value.
  1. To verify the new setting in your Code42 environment, enter the following command:

prop.show c42.dataKeySharing.enabled

  • Was this article helpful?