![]() |
![]() |
Authorized User
The encryptkey option specifies whether to save the encryption key password locally when performing a backup-archive operation or whether to prompt for the encryption key password. The encryption key password is saved to the TSM.PWD file in encrypted format.
If you set the encryptkey option to save, you are only prompted the first time you perform an operation. Thereafter, Tivoli Storage Manager does not prompt for the password.
Note: The Web client saves the encryption key password in the TSM.PWD file. If you do not save the encryption key password, you are prompted for the initial encryption key password when you begin encryption processing.
Table 30 shows how both Authorized Users and non-Authorized Users can
encrypt or decrypt data during a backup or restore operation depending on the
value you specify for the passwordaccess option. The
TSM.PWD file must exist to perform the following Authorized User and
non-Authorized User operations. The Authorized User creates the
TSM.PWD file and sets the encryptkey option
tosave and the passwordaccess option to
generate.
Table 30. Encrypting or Decrypting Data
Operation | Passwordaccess Option | Encryptkey Option | Result |
---|---|---|---|
Authorized User Backup |
generate generate prompt prompt |
save prompt prompt save |
data encrypted data encrypted data encrypted data not encrypted |
Authorized User Restore | prompt | save | prompted for encryptkey password and data decrypted |
Non-Authorized User Backup |
generate generate prompt prompt |
prompt save prompt save |
data not encrypted data encrypted data not encrypted data not encrypted |
Non-Authorized User Restore |
generate generate prompt prompt |
prompt save prompt save |
menu to skip or proceed data decrypted menu to skip or proceed menu to skip or proceed |
Supported Clients
This option is valid for all UNIX clients.
Options File
Place this option in the client system options file dsm.sys
dsm.opt.
Syntax
.-save---. >>-ENCryptkey-+--------+--------------------------------------->< '-prompt-'
Parameters
Examples