PGP Encryption Server replicates data without the Ignition Key passphrase being entered (Symantec Encryption Management Server)
search cancel

PGP Encryption Server replicates data without the Ignition Key passphrase being entered (Symantec Encryption Management Server)

book

Article ID: 190852

calendar_today

Updated On: 03-11-2024

Products

Encryption Management Server Powered by PGP Technology Gateway Email Encryption Powered by PGP Technology

Issue/Introduction

A PGP Encryption Server Ignition Key protects certain data by encrypting it (Symantec Encryption Management Server).

This protects the data in the unlikely event that an unauthorized person obtained control of the database.

After the administrator successfully logs into the PGP Encryption Server they are prompted for the ignition key passphrase. They are only prompted for the ignition key passphrase after each reboot of the server (simulating someone having access to the physical machine).

Resolution

If a server is rebooted but the administrator does not enter the passphrase to the Ignition Key, the server will still replicate data with other cluster members if it is part of a cluster.  Ignition keys are a good method to protection of data on the server from direct access.  For more information on Ignition Keys, reach out to Symantec Encryption Support.