- Installation and Administration Guide
- Keys, Key Policies, and Key Groups
- Transfer Keys Between Clusters
- Export a Transfer Partner Key
Export a Transfer Partner Key
Export keys to share them with a transfer partner.
- Before exporting, verify the key meets the following requirements:
Table 11-2 Required Settings for Exporting a Key
Component Values Required How to Verify/Change Key Policy
Allow Export From = True
View and Modify Key Policies Key transfer partner
Enabled = True
Allow Export To = True
Export Format properly set for software version and FIPS settings (see Table 11-1)
View and Modify the Transfer Partner List Key Group
Transfer partner is associated with the key's key group
Assign a Transfer Partner to a Key Group Key State
Must not Protect and Process, Process Only, Deactivated, or Compromised
Must be activated (Activation Date not empty) and not destroyed (Destroyed Date empty)
View and Modify Data Units - From the Data Units menu, select Data Unit List.
- Select one or more data units (tapes) to be sent to the partner cluster. The
External Tag is the barcode on the tapes.
Keys associated with the selected data units must belong to key groups associated with key policies that have their
Allow Export From
flag set to "True." These keys must also be activated (their Activation Date is not empty) and not destroyed (their Destroyed Date is empty). See View and Modify Data Units. - Click Export Keys.
- Select the destination transfer partner, select the Export Keys file name if
necessary, and click Start.
OKM only exports the Keys belonging to the key groups assigned to the partner cluster. See Assign a Transfer Partner to a Key Group.
- Send the Transfer File to the partner cluster's administrator by e-mail or another agreed-upon form of communication or mechanism to move files.