The Data Protection Options table lists the level of protection for your data and provides you the option to encrypt the DNA/Self-Extracting file and the data exchanged in a real-time migration. Encryption is done using the AES (Advanced Encryption Standard) 192 encryption algorithm.
|
Name |
Explanation |
Comment |
Valid Values |
Dependency |
|---|---|---|---|---|
|
Data Protection Level for Deferred Migration |
How do you want the DNA file to be protected? |
States the level of protection to use when storing user data to a DNA file. |
None Quickest Safe Safest Defaults to None |
For the Quickest and Safe options, you must provide a password either in the UI or in the command line. For the Safest option, you must provide an encryption key either in the UI (FIPS Key Path field) or in the command line. |
|
FIPS Key Path |
This FIPS key is used to encrypt the data while creating the DNA file. |
Provides the path of the key used to encrypt the data in the safest mode of encryption. |
Valid file path |
Safest mode of encryption must be selected. |
|
Enable Encryption Key Recovery |
Do you want to recover the key used for encryption, if lost? |
CA DMM stores the encrypted key in the DNA file to recover the key on request. |
True or False Defaults to False |
Needs a public key for the encryption of the password. |
|
Public Key Path |
This public key is used to encrypt the password while creating the DNA file. |
Corresponding private key must be available for recovery. |
Valid file path |
None |
|
Encrypt the data transferred over the network during a real-time migration |
Do you want the data transfer over the network to be encrypted during a real-time migration? |
States whether the data transfer during a real-time migration is encrypted or not. |
True or False Defaults to False |
None |
Note: If you select the encryption option while capturing the settings and then use the CA Merger and Acquisition Tool to perform the migration, you need to make sure that you have entered the key path in the DMM Options file. If the tool does not find the key path in the DMM Options file, the tool stops the migration without displaying any error message. The reason is that the CA Merger and Acquisition Tool performs the migration in the silent mode and hence cannot prompt for the key path. However, the following error message is logged in the log file to specify that the migration has failed because of the non-availability of the key path in the DMM Options file:
Creation failed for "<DNA File Name>": No encryption key is available. A well-known encryption key was returned.
|
Copyright © 2013 CA.
All rights reserved.
|
|