Add Encryption Key options

You have several options when you create an encryption key.

See Creating an encryption key.

Table: Add Encryption Key options

Item

Description

Key name

Designates a unique name for this key. The name can include up to 256 characters.

Encryption type

Designates the encryption type to use for this key. Your choices are 128-bit AES or 256-bit AES. The default type is 256-bit AES.

The 256-bit AES encryption provides a stronger level of security than 128-bit AES encryption. However, backup jobs may process more slowly with 256-bit AES encryption than with 128-bit AES encryption.

Hardware encryption that uses the T10 standard requires 256-bit AES.

Pass phrase

Designates a pass phrase for this key. For 128-bit AES encryption, the pass phrase must be at least eight characters. For 256-bit AES encryption, the pass phrase must be at least 16 characters. Symantec recommends that you use more than the minimum number of characters.

You can use only printable ASCII characters.

See About pass phrases in encryption.

Confirm pass phrase

Confirms the pass phrase.

Common

Makes this key a common key. If a key is common, any user of this installation of Backup Exec can use the key to back up and restore data.

Restricted

Makes the key a restricted key. If a key is restricted, anyone can use the key to back up data. But only the key owner or a user who knows the pass phrase can use the restricted key to restore the encrypted data.

Add Encryption Key options