Table of Contents
Advertisement
Table 6-24 Variables Returned by the Key Query Interface (Continued)
Variable
keyLength
ownerName
publicKey
serialNumber
state
Key Recovery Query Interface
Description
URI:
Available On: Data Recovery Manager only.
Function: Retrieves a set of archived keys, for the purpose of recovering them,
based on a flexible query specification.
The Key Recovery Query interface allows you to build query criteria much like an
LDAP query. Criteria can be combined using logical AND or OR for flexibility. You
can match keys in the archive based on the DRM serial number, the DN of the key
owner, the certificate containing the corresponding public key, or the agent that
archived the key.
Description
number
The number of bits in the archived key (Data Recovery Manager requests).
Distinguished Name (DN) string. See RFC 2253.
The subject entry on the certificate corresponding to an archived encryption
key (Data Recovery Manager requests only).
Example: CN=Alice Apple, UID=alice, OU=People, O=Example
Corporation, C=US
string
A string of two-digit hexadecimal numbers separated by colon. Each number
represents a byte in the public key corresponding to the private key to be
archived.
number
A unique identification number that identifies a key in the archive. This differs
from the certificate serial number.
VALID | INVALID
The current status of the key corresponding to the request.
/kra/queryKeyForRecovery
Key Recovery Query Interface
Chapter 6
Agent Interface Reference
149
Advertisement
Table of Contents
