Working with Certificates
Applies To: System Center Data Protection Manager 2010
System Center Data Protection Manager (DPM) 2010 uses certificates to encrypt the backups to tape. You can use one or a combination of multiple certificates to encrypt your backups. During installation, DPM creates two folders, DPMBackupStore and DPMRestoreStore, in the DPM Certificate Store.
Storing Certificates
You must store you current certificates in DPMBackupStore folder in the Certificate Store. DPM will use these certificates to encrypt data. You can store multiple certificates there if you want DPM to create a key by using more than one certificate.
Storing Expired Certificates
When your certificates expire, you must move them into the DPMRestoreStore folder in the Certificate Store. This ensures that you can recover the expired certificates from an encrypted tape by using a certificate that is no longer active.
Tip
We recommend that you move your expired certificates and your tapes to the DPMRestoreStore folder.
See Also
Tasks
How to Encrypt Data in a Protection Group
How to Create Self-Signed Certificates for Successful Encryptions
How to Install and Remove Certificates from a Certification Authority
How to Import Certificates into DPMBackupStore