<p>I started this test on 7.1.5 in the lab yesterday and the backup files are not encrypted. I didn't get a chance to change the sec pass and restore. </p>
<div class="gmail_quote">On Jan 25, 2011 6:21 PM, "Wes Sisk" <<a href="mailto:wsisk@cisco.com">wsisk@cisco.com</a>> wrote:<br type="attribution">> I believe this came with the CM 8.0 feature of security by default and <br>
> automatically encrypted backups:<br>> <br>> <a href="http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/8_0_1/secugd/secusbd.html#wp1092151">http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/security/8_0_1/secugd/secusbd.html#wp1092151</a><br>
> <br>> Encrypted backup depends on correct password to restore. Before this <br>> you *may* be able to get by with mismatch passwords. I seem to recall it <br>> being possible but have not tested and cannot find documentation.<br>
> <br>> Regards,<br>> Wes<br>> <br>> On 1/25/2011 5:22 PM, Ed Leatherman wrote:<br>>> Jason,<br>>><br>>> Good call.. I checked on our system and no such message comes up when<br>>> I kick off a manual backup (which doesn't mean it isn't the case<br>
>> though).<br>>><br>>> I'm going to try to build this in the lab and see what happens with a<br>>> production backup.. licenses won't work but that shouldn't matter to<br>>> test this.<br>
>><br>>> I'm leaning towards changing the cluster password anyway to avoid any<br>>> potential upgrade or hardware migration issues in the future.<br>>><br>>><br>>><br>>> On Tue, Jan 25, 2011 at 11:00 AM, Jason Burns<<a href="mailto:burns.jason@gmail.com">burns.jason@gmail.com</a>> wrote:<br>
>>> The current CUCM 8.5.1 implementation of DRS prompts you with this message<br>>>> before you start a backup:<br>>>><br>>>> ============<br>>>> The DRS Backup archive encryption depends on the current security password<br>
>>> (Provided at the time of install). During a restore, you could be prompted<br>>>> to enter this security password if this password has been changed.<br>>>> ============<br>>>> So in that case you're hosed.<br>
>>> I'll have to check if that same behavior exists in 7.1.5.<br>>>> On Sun, Jan 23, 2011 at 7:45 PM, Ed Leatherman<<a href="mailto:ealeatherman@gmail.com">ealeatherman@gmail.com</a>><br>>>> wrote:<br>
>>>> Hello,<br>>>>><br>>>>> When doing a restore from backup, does the cluster security password<br>>>>> get set from the backup files, or must it be set to match when you<br>
>>>> initially install CM on the hardware?<br>>>>><br>>>>> The reason I ask is, we were going to replace publisher hardware this<br>>>>> morning, but when we go to the step in the CM install (7.1.5) where<br>
>>>> you enter the cluster security password and used our current security<br>>>>> password, it came back and said it was based on a dictionary word.<br>>>>> Now.. i'm guessing CM is checking against the Klingon dictionary at<br>
>>>> this point, since the password is gibberish, and mostly special<br>>>>> characters. The current cluster password was set when we first<br>>>>> installed CM 5.<br>>>>><br>
>>>> Regardless.. if I install using some other password it accepts, and<br>>>>> then restore the publisher from normal per the procedure - will the<br>>>>> backup files restore the correct cluster security password, or am I<br>
>>>> stuck at this point with going around and changing the current<br>>>>> password? Anyone else ever run into this?<br>>>>><br>>>>> --<br>>>>> Ed Leatherman<br>
>>>> _______________________________________________<br>>>>> cisco-voip mailing list<br>>>>> <a href="mailto:cisco-voip@puck.nether.net">cisco-voip@puck.nether.net</a><br>>>>> <a href="https://puck.nether.net/mailman/listinfo/cisco-voip">https://puck.nether.net/mailman/listinfo/cisco-voip</a><br>
>>><br>>><br>>><br></div>