This article contains brief :xRecovery procedures that can be used as a quick reference when working with Archive materials. For information and insight on :xRecovery configuration, behavior, and security, refer to :xRecovery Archive Details.
Requesting the Archive
To request an :xRecovery Archive:
- Click the SSProtect notification icon
- Choose :xRecovery Panel from the context menu
- Check All Versions if you want every version of each file, else leave unchecked
- Check Entire Organization, else enter the Account for which you want data
- Choose Request
DefiniSec Support will contact an appointed representative from your Organization to authorize the transaction before creating the Archive for you to download. Once this process completes, you will receive notification via email that the data is ready for you.
Acquiring the Archive Keys
You will need three resources to download and access content:
- A Shared Access Signature, required to download the Archive
- An Archive Key file, used when accessing Archive content
- A secret, required for use of the Archive Key file when accessing content
Return to the :xRecovery Panel and choose Get Keys to download the Archive Key file. You will be prompted for a name and location used to save the file, though the :xRecovery Panel will look for the file named ArchiveKey to be in the folder with downloaded content.
Cloud Archive Key(s)/ Location
After the Archive Key file is saved, you will be returned to the UI where you will find either one or two edit controls with data. If there are two, your Provider is deployed using Amazon Web Services, and you will need both the S3 Bucket URL (top control) and also the Key/ Key Secret combination (bottom, highlighted control). Azure Providers deliver only a singled Shared Access Signature, which is a URI you can use to access content directly.
In either case, copy materials and set them aside for re-use before choosing Clear SAS. The clear operation will empty the Clipboard and all data, and you cannot return to retry if you make a mistake.
NOTE: If you do not have the URI after the Clear SAS operation, you will have to start over with a new Request - be sure to securely store data items before clearing content.
Azure - Downloading the Archive
If you received a Shared Access Signature URI in response to Get Key, your Archive is stored in Azure Cloud Storage. Use any Azure-compatible application to access content: The SAS URI will allow you to connect, access, and download the your data. For specific instructions using the Azure Storage Explorer, refer to the article, Using Storage Explorer with :xRecovery.
Once you have downloaded the Archive files, you should Delete them from Azure Storage.
AWS - Downloading the Archive
If you received an S3 Bucket URL and Key/ Secret combination, your Archive is stored in S3. Use any S3-compatible application using the given IAM credentials and Bucket data. The URL and Key String are formatted as follows:
S3 Bucket URL: xrecovery-<type>-<organization>-<location>-secdefini-com
Key String: <Key Access ID>.<Key Secret>
<type> is <stag|prod> depending on your use and provider, and
<location> informally depicts the Amazon S3 Bucket Endpoint, i.e. uswest1, useast1, etc.
The S3 Bucket holding your materials is automatically removed after 24 hours.
Archive Access Stipulations
The SAS URI you are given limits access to 1 hour from the point in time that you chose Get Keys, at which point the cloud Archive is no longer accessible. The SAS URI also requires that you connect from a host that presents the same public IP address as the one used when you chose Get Keys.
AWS S3 stipulations are similar from the standpoint of public IP restrictions, however you have 24 hours to access and download your S3 bucket data.
Contact our Support team if you have problems acquiring content.
Isolating the Archive Key and Archive Files
Copy the Archive Key file you stored in the acquisition phase, above, to the folder that contains downloaded content. Move the resulting folder to a physically isolated host computer that has the :Foundation Client installed, then remove the original folder. Be sure to visit the Recycle Bin and remove any leftover reference.
Accessing the Archive
To access Archive content and decrypt files to plaintext:
- Start the :xRecovery Access Panel using the Desktop shortcut
- Enter the secret given over the phone in the Archive IV edit box (top left)
- Browse to the folder holding transferred files to set the Archive Folder
- Choose Open to see a list of files, though they will not (yet) present filenames
Decrypting Archive Filenames
Filenames are encrypted in the cloud, which you can decrypt with keys you Exported before starting this operation:
- Browse to your exported Organization .ssp keyfile to set the Keystore (top right)
- Enter the Passphrase for your .ssp keyfile
- Choose Import to display the Real Filename entries with the list
Decrypting Archive Content
Use the Account dropdown to limit the results to a specific User. You can further adjust results with the Filter button. Select one or more files with a combination of shift/ control-click operations, then choose Decrypt. On completion, the list's state will reflect results for each file. Plaintext files are stored in a subfolder that matches the Account (Username). If any file fails to decrypt, you will likely encounter a 0-length file.
New in v6.7.0, you can also control the resulting Decrypted filename, optionally including the full HostGUID, Owner Username, and/ or Version using the checkboxes directly above the Decrypt and Filter controls. Operation is as expected; choose a target file to see a preview.
Getting Additional Help
For more details, refer to the article, :xRecovery Archive Details, or send email to email@example.com and one of our Support team members will provide assistance.
This article was updated w/ v6.7.1 of the :Foundation Client