You must back up the events regularly. The backup media should be stored in a secure off-site facility.
Back up the system data. For more information, see Backup and Restore Utility
in the Sentinel Rapid Deployment User Guide.
For sensitive data, use one of the following methods to encrypt the data backup:
Encrypt the data itself if the application that creates the data supports encryption. For example, database products and third-party tools support data encryption. Use backup software that is able to encrypt data as you back it up. This method has performance and manageability challenges, especially for managing encryption keys.
Use an encryption appliance that encrypts sensitive backup media as the data is backed up.
If you transport and store media off-site, use a company that specializes in media shipment and storage. Make sure that your tapes are tracked via bar codes, stored in environmentally friendly conditions, and are handled by a company whose reputation rests on its ability to handle your media properly.
Load Recovery Certificates. The Novell Sentinel service by default is not configured for the Recovery agent. During server configuration via YaST, ensure that the Recovery agent path is configured. This path should contain the list of certificates that the service can load for the users to select from.
For more information, see Certificate Management for Sentinel 6.1 Rapid Deployment Server
in the Sentinel Rapid Deployment Reference Guide.
YaST contains modules for the basic management of X.509 certificates, which mainly involves the creation of CAs, sub-CAs, and their certificates. For more information on how to manage and update certificates, see Managing X.509 Certification in the SUSE Linux Enterprise Server 10 Installation and Administration Guide.