Configuring encryption key storage for backups

About this task

Configure whether OpsCenter stores the encryption keys for each node along with the SSTables. When tables in a cluster use the DataStax Enterprise Transparent data encryption, encryption keys from each node are stored in remote locations alongside the data. Encryption key storage is enabled by default in the OpsCenter Backup Service and is highly recommended.

Any encryption keys associated with a table are backed up.


  1. Select cluster name > Services.

  2. Select the Details link for the Backup Service.

  3. Click the Settings tab.

    Configure optional Backup Service features in the Settings tab

  4. Click the Configure link for Encryption Key Storage.

  5. Set the slider to On to enable or Off to disable storing encryption keys alongside the backup data.

    Encryption Key Storage dialog for OpsCenter Backup Service. Disabling encryption key storage is not recommended.

    If Encryption Key Storage is enabled and a cluster has encrypted keyspaces, the encryption key for each node is stored in the backup location along with the data. If you disable this option, you must ensure that the encryption key is available on all nodes prior to restoring encrypted tables.

  6. Click Save.

Was this helpful?

Give Feedback

How can we improve the documentation?

© 2024 DataStax | Privacy policy | Terms of use

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Pulsar, Pulsar, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries. Kubernetes is the registered trademark of the Linux Foundation.

General Inquiries: +1 (650) 389-6000,