Table of Contents
Advertisement
Chapter 7.
DRM: Recovering Encrypted Data
This chapter describes how authorized Data Recovery Manager (DRM) agents process key recovery
requests and recover stored encrypted data when the encryption key has been lost. This service is
available only when the DRM subsystem is installed.
7.1. Listing Requests
There are three kinds of key service requests:
• Key archival requests, made by Certificate Manager agents
• Key recovery requests, made by DRM agents
• Token key requests for archiving smart card (token) keys in conjunction with server-side key
generation requests. This request can only be initiated through a TPS subsystem.
A DRM agent reviews these requests. An agent can search for and list key service requests with a
particular status, such as completed or rejected, select a key service request from the returned list,
and examine the request details. Key service requests are handled internally; it is not necessary to
take any action on them unless the Certificate System is specially configured.
To list key service requests:
1. Open the DRM agent services page.
https://server.example.com:10443/kra/agent/kra
2. Click List Requests to display the List Requests form.
3. Choose the type of requests to see from the Request type menu.
81
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8 - AGENTS GUIDE and is the answer not in the manual?
Questions and answers