Who is this article for?
CrashPlan for Enterprise, yes.
Code42 for Enterprise, yes.
CrashPlan for Small Business, no.
This article applies to on-premises authority servers.
This article describes how to disable data key sharing. Data keys are the raw bytes used to encrypt backup data. By default, data keys only exist on the source device and a trusted authority server or external keystore. By default, an authority server shares data keys with storage servers that request them for purposes of maintenance or web restore.
To improve system security, you can disable sharing data keys. In environments with on-premesis authority servers and Code42 cloud storage, you might disable key sharing because you do not want to send data keys off-premises regardless of the functional limitations.
When data key sharing is disabled:
Disable data key sharing
- Double-click the logo in the upper-left corner of the Code42 console.
The command-line interface appears in the Code42 console.
- To view the current value of the data key sharing setting in your Code42 environment, enter the following prop.show command:
A returned value of 0 properties indicates that data key sharing is enabled by default.
- Enter the following prop.set command at the top of the command-line interface to disable data key sharing:
prop.set c42.dataKeySharing.enabled false save all
Setting a new value with a
prop.setcommand overwrites any existing value.
- To verify the new setting in your Code42 environment, enter the following command: