Secure storage master key
The secure storage master key provides extra protection for the account details stored on the firewall. The key encrypts sensitive information, such as passwords, secrets, and keys, preventing unauthorized access. The default administrator (username: admin) sets the secure storage master key.
Note
You must create the master key before taking a manual or scheduled backup.
Warning
After you create the master key, all new backups use it to secure sensitive data. If you don't enter the master key, you can't restore these backups.
Backups with a master key
- To restore a backup that has a master key, you must enter the master key in addition to the backup encryption password. You must share both if you share these backups with Sophos Support.
- Configurations are associated with their master key. If you generate a backup and then change the master key, you must use the previous master key to restore that backup. So, store the current and earlier master keys.
Backups without a master key
- You can restore manual and scheduled backups that don't have a master key. The firewall won't ask for a master key.
- If you restore a scheduled backup that doesn't have a master key, the firewall continues to take scheduled backups at the restored backup's frequency. You can't change the frequency until you set a master key.