You can create secondary backups of the data encryption keys on the key management server (KMS). The data encryption keys that you back up to the KMS are managed with the client certificate. When you manually back up to the KMS, the server uses another data encryption key to encrypt the original keys. Both keys reside on the server.
Note: The number of keys that can be backed up on a KMS is limited. Delete unnecessary keys whenever possible.
- Confirm that the storage system is not processing any other tasks (click Tasks in the Explorer pane). You cannot back up the encryption keys while a task is in process on the storage system.
- You must have the Security Administrator (View & Modify) role.