Creating an encryption key

When you create an encryption key, you select the type of encryption to use.

To create an encryption key

  1. On the Tools menu, click Encryption Keys.

  2. Click New.

  3. Complete the appropriate options as follows:

    Key name

    Type a unique name for this key. The name can include up to 256 characters.

    Encryption type

    Select the encryption type to use for this key. Your choices are 128-bit AES or 256-bit AES. The default type is 256-bit AES.

    The 256-bit AES encryption provides a stronger level of security than 128-bit AES encryption. However, backup jobs may process more slowly with 256-bit AES encryption than with 128-bit AES encryption.

    Hardware encryption that uses the T10 standard requires 256-bit AES.

    Pass phrase

    Type a pass phrase for this key. For 128-bit AES encryption, the pass phrase must be at least eight characters. For 256-bit AES encryption, the pass phrase must be at least 16 characters. Symantec recommends that you use more than the minimum number of characters.

    You can use only printable ASCII characters.

    See About pass phrases in encryption.

    Confirm pass phrase

    Retype the pass phrase.

    Common

    Select this option to make this key a common key. If a key is common, any user of this installation of Backup Exec can use the key to back up and restore data.

    Restricted

    Select this option to make this a restricted key. If a key is restricted, anyone can use the key to back up data, but only the key owner or a user who knows the pass phrase can use the key to restore the encrypted data.

  4. Click OK.