Home > Encryption Management > Create an Encryption Profile
Export to PDFCreate an Encryption Profile
To create an encryption profile, make sure you have finished the Prerequisites for Creating an Encryption Profile. Then, click Create on the ribbon and configure the following settings on the Create encryption profile page.
Please properly manage and secure keys in your Azure Key Vault for custom encryption profiles. If the key is lost, the encrypted data will be non-recoverable. As the Key Vault is critical to your backup integrity, it is strongly recommended enabling Soft Deletion and Purge Protection on your Key Vault. For details, refer to this Microsoft article, Azure Key Vault: soft-delete overview.
-
Profile name – Enter a name for the encryption profile.
-
Description – Enter an optional description.
-
Key identifier – Enter the key identifier of your key vault. Ensure that the valid version is included in the key identifier. For example, https://{vault-name}.vault.azure.net/keys/{key-name}/{key-version}.
-
Client ID – Enter the application ID of the application you prepared for the key vault.
-
Client secret – Enter the application key of the application above.
-
Expiration date – Since the encryption profile cannot continue to work once the client secret expires, you can choose to Add a reminder for the Key Vault's client secret expiration date. After checking the client secret’s expiration date in Microsoft Azure, click the calendar button and select a date.
-
Email recipients 15 days before and on the expiration date – If you want to receive the notification before/on the client's secret expiration date, select this checkbox and select an email recipient list from the drop-down list.
-
Click Save to save your configurations or click Cancel to go back to the Encryption management page without saving any configurations.