Threat Grid Appliance Backups
Threat Grid Appliances (v2.2.4 or later) support encrypted backups to NFS-backed storage, initialization of data from such storage, and reset to an empty-database state into which such a backup can be loaded.
Note |
Reset is different from the Wipe Appliance process; it is used to allow an appliance to be shipped off customer premises without information leakage, and is for backup preparation. The wipe process appropriate for that purpose already exists in the recovery bootloader, but is not suitable for preparing a system to restore a backup. |
Content is encrypted with gocryptfs, a third-party open source product.
Note |
Filename encryption is disabled for performance reasons. Samples and other content in Threat Grid are not stored with their original names under any circumstances so this does not leak customer-owned data. |
We strongly encourage consulting the documentation prior to use. Extended documentation regarding the backup functionality is available, and we strongly encourage consulting it prior to use. For additional technical information and instructions see the Backup Notes and FAQ, and the Cisco Threat Grid Appliance Setup and Configuration Guide, which are both available on Cisco.com.