Determine whether your deployment region and key management system support Bring Your Own Key (BYOK) for backups
To determine whether your Cloud Databases deployment region and key management system support Bring Your Own Key (BYOK) for backups, follow this procedure:
Prerequisites
Before beginning this tutorial, make sure that you have created or installed the following resources and tools.
- An IBM Cloud account. For more information, see Creating an account.
- The Cloud Databases CLI plug-in - the CLI interface to interact with the Cloud Databases API. For more information, see Getting started with the IBM Cloud CLI.
- A Cloud Databases deployment. For more information, see Provisioning.
Match backup region location with data location requirements
-
Ensure that the backup region location matches your data location requirements, see Backup Locations Cloud Object chart. Backup location differs per database region. Ensure that the backup region location matches your data location requirements.
-
Check whether the Cloud Databases broker configuration permits the key region:
Cloud Databases instance location and key region support Instance location Key region supported us-east
us-south
us-south
us-south
eu-fr2
eu-de
,eu-fr2
eu-de
eu-de
Configure failover
Creating Cross region buckets with a root key from a Hyper Protect Crypto Services (HPCS) instance requires that instance to be configured with failover configuration.
Confirm that failover is properly configured for the selected HPCS instance correctly using either the IBM Cloud console or CLI. For more information, see Creating Cross region buckets.