Configuring encryption in a partner protection plan

In a partner protection plan, encryption is always enabled and you cannot disable it. The AES-256 algorithm is used.

You must specify a separate encryption password for each customer that has workloads which are protected by the plan. If a customer does not have an encryption password, the backups of the workloads that belong to that customer will fail.

There is no way to recover encrypted backups if you lose or forget the password.

To configure encryption passwords

  1. In a partner protection plan, next to Encryption, click Manage passwords.
  2. In the Encryption password dialog, review the list of customers and their password status.

    The following statuses are available:

    • Password specified – a password is configured for this customer.
    • Password required – no password is configured. You must specify a password before you can save the plan.
  3. For each customer that requires a password, click Create.
  4. Specify and confirm the encryption password for the customer, and then click OK.
  5. After you specify passwords for all customers, click Save.

If you apply a partner protection plan to a dynamic group or a nested group, Cyber Protect might not be able to verify that all customers have a valid encryption password when you create the plan. In this case, backups of workloads that belong to customers without a password will fail, and an alert will be generated.