Skip to content

Overview: Backing up and restoring VSatellites

VSatellites are designed to be light-weight and disposable (stateless). This is so that you can easily add, remove and reconnect them from the VSatellites page ( Certificate Manager - SaaS > Settings > VSatellites).

To be able to recover from a catastrophic loss of connections between all of your VSatellites and Certificate Manager - SaaS, it's critical that you back up the data encryption key (DEK). The DEK plays a critical role in recovering from just such a scenario.

WARNING!

To recover successfully from a catastrophic event, backing up your DEK is not enough. You must also ensure at least one VSatellite remains in your Certificate Manager - SaaS account.

Best practices for VSatellite recovery

Carefully review and follow these best practices to ensure the proper functioning of your VSatellites:

  • Back up your DEK immediately after installing your first VSatellite.
  • Regularly verify that at least one VSatellite remains in your account.
  • Store your DEK backup in a secure, access-controlled location.
  • Never delete all VSatellite from your account—even with a DEK backup, recovery is impossible if none remain.
  • Periodically review your backup and recovery procedures with your team.