Backing up the software encryption key

When you installed and configured Venafi Trust Protection Platform, you had the option to enable either software or hardware encryption (or both). If you enabled software encryption, you need to back up the software encryption key to a secure location. The software key is critical to the functionality of Trust Protection Platform. Without it, you cannot access data in the database. In the event of a system failure, you will need a copy of the encryption key to access your data. Additionally, if you want to install additional Trust Protection Platform servers, you will need the software key to install and configure those servers.

For more information about why it's important to back up your data, see Disaster recovery operations.

To export the software key from Venafi Configuration Console

1. From the Venafi Trust Protection Platform server, open Venafi Configuration Console.
2. In the left panel, click Connectors.
3. In the center panel, click the Software component.
4. In the Actions panel on the right, click Export Key...
5. (Conditional) If requested, enter the Venafi Platform administrator user name and password.
6. Enter a password to encrypt the exported key.
7. Click Browse to select a location to export the key.
8. Click Export.

For more information, see Venafi Configuration Console.

To export the software key from the command line

1. On the Venafi server, open a command line and browse to the Venafi installation directory.

2. Run the following command:

   tppconfiguration.exe -keyexport:<file-path>

Related Topics