vStor 4.12 Documentation
  • Welcome to vStor!
  • Introduction
  • Installation
    • Deploying Catalogic vStor on Physical Appliances
    • Deploying Catalogic vStor Virtual Appliance for VMware
    • Deploying Catalogic vStor Virtual Appliance for Microsoft Hyper-V
    • Required Ports for Catalogic vStor
    • Updating Catalogic vStor
  • Quick Start
    • Catalogic vStor for VMware
    • Catalogic vStor for Hyper-V
  • Basic Configuration
    • Initializing vStor
    • Adding Catalogic vStor Node to Catalogic DPX
      • Using vStor API Keys with Catalogic DPX
    • Configuring vStor System Settings
    • Configuring vStor Network Settings
    • Backing up Configuration Settings of Catalogic vStor
    • Restoring Configuration Settings of Catalogic vStor
  • Storage Management
    • Adding Disks
    • Managing Storage Pools
    • Managing Volumes
      • Migrating Volumes
      • Creating Volume Snapshots
      • Using vStor Autosnapshot
    • ZFS Compression and Deduplication
    • Managing Shares
    • Managing Hosts for LUN Volumes
    • Using vStor Snapshot Explorer
  • Data Protection
    • Catalogic vStor Backup and Recovery
    • vStor Partnerships
      • Creating Replication Groups
      • Establishing Cross-Version Partnerships
    • Enabling Volume Encryption
    • Immutability in vStor
    • Using GuardMode Scan
    • Using Remote Keystore
  • Advanced Configuration
    • Using Multipath Storage
    • Managing Certificates
    • Adding Encryption URLs
    • Managing MinIO Buckets
    • Assigning an E-mail to a vStor Account
    • Managing vStor User Accounts
    • Using Multifactor Authentication (MFA)
  • vStor Command Line Interface
    • Catalogic vStor Server CLI Overview
  • Best Practices
    • Hardware Configurations: Best Practices
    • Data Backup: Best Practices
    • Data Archiving: Best Practices
    • Backup Storage: Best Practices
    • Frequently Asked Questions: Best Practices
  • Technical Support
Powered by GitBook
On this page
  • Managing Encryption Passwords
  • Adding Passwords to Keystore
  • Removing Passwords from Keystore
  • Unlocking Encrypted Volumes
  • Security Considerations
  1. Data Protection

Using Remote Keystore

PreviousUsing GuardMode ScanNextUsing Multipath Storage

Last updated 1 month ago

The encryption keystore provides centralized management of volume encryption passwords. This feature allows you to store and manage encryption passwords securely, simplifying the process of unlocking encrypted volumes.

See also. To learn how to configure your remote keystore, see .

Managing Encryption Passwords

Adding Passwords to Keystore

You can add encryption passwords to the Encryption Keystore in two ways:

  • During volume creation, switch on the Save key in Encryption Store toggle.

  • In the key management interface for existing volumes, if the Enable encryption toggle was on during volume creation and the volume key has not been saved in the keystore.

To add a password for an existing volume:

  1. Navigate to System > System Settings tab > Encryption Keystore pane.

  1. Click Manage keys. The Manage Keys dialog will open.

  1. Click Add key next to the volume for which you want to add the encryption key. The Add Encryption Key dialog will open.

  1. Type the encryption key specified when creating the volume.

  2. Click Save.

Removing Passwords from Keystore

To remove a stored password:

  1. Navigate to System Settings > Security and Network.

  2. Click Manage keys in the Encryption Keystore pane.

  3. Hover over the desired volume.

Unlocking Encrypted Volumes

To unlock a volume whose encryption key is stored in the Encryption Keystore:

  1. Select the volume from the volumes list.

  2. Select Unlock. The Volume Unlock dialog will open.

  3. Instead of specifying the volume’s encryption key, select Unlock using stored key.

If you prefer not to use the stored password, you can still unlock volumes by entering the encryption password manually.

Security Considerations

  • The Encryption Keystore must be properly configured before storing or using encryption passwords.

  • Removing a password from the keystore does not affect the volume’s encryption settings.

  • All passwords stored in the Encryption Keystore are encrypted.

Attention! Always maintain secure backups of your encryption passwords, even when using the Encryption Keystore.

Tip. If the Manage keys button is disabled, configure your Encryption Keystore first. See .

Click the button next to the volume name.

Encryption Keystore
Encryption Keystore