Skip to main content

Who is this article for?

Code42 for EnterpriseSee product plans and features
CrashPlan for Small Business 

CrashPlan for Small Business, no.

Code42 for Enterprise, yes.

Link: Product plans and features.

This article applies to version 6.

Other available versions:

Version 5Link: What version am I on?

Code42 Support

Disable data key sharing

Who is this article for?

Code42 for EnterpriseSee product plans and features
CrashPlan for Small Business 

CrashPlan for Small Business, no.

Code42 for Enterprise, yes.

Link: Product plans and features.

This article applies to version 6.

Other available versions:

Version 5Link: What version am I on?

Overview

This article describes how to disable data key sharing. Data keys are the raw bytes used to encrypt backup data. By default, data keys only exist on the source device and a trusted authority server or external keystore. By default, an authority server shares data keys with storage servers that request them for purposes of maintenance or web restore.

To improve system security, you can disable sharing data keys. In environments with on-premesis authority servers and Code42 cloud storage, you might disable key sharing because you do not want to send data keys off-premises regardless of the functional limitations.

Considerations

When data key sharing is disabled:

  • Users cannot perform web restores. However, users can still perform restores from the Code42 app on their devices, and maintenance can still run on private storage server archives.
  • Administrators cannot perform endpoint monitoring (also called file exfiltration detection).

Disable data key sharing

  1. Sign in to the administration console.

  2. Double-click the logo in the upper-left corner of the administration console.
    The command-line interface appears in the administration console.
  3. To view the current value of the data key sharing setting in your Code42 environment, enter the following prop.show command:

prop.show c42.dataKeySharing.enabled

A returned value of 0 properties indicates that data key sharing is enabled by default.

  1. Enter the following prop.set command at the top of the command-line interface to disable data key sharing:

prop.set c42.dataKeySharing.enabled false save all

Overwriting values
Setting a new value with a prop.set command overwrites any existing value.
  1. To verify the new setting in your Code42 environment, enter the following command:

prop.show c42.dataKeySharing.enabled

  • Was this article helpful?