Q: Does Vaulting Encrypted Data to Encrypted Tape Pools Create a double-encrypted backup?
NetBackup version 6.5.6 on Solaris 10
A policy writes to disk pool which gets staged to an encrypted tape pool (ENCR_onsite). A vault policy then comes along and vaults the data from ENCR_onsite to a pool called ENCR_offsite.
a) Does the data on ENCR_onsite now vaulted to ENCR_offsite now become double-encrypted when it goes to ENCR_offsite?
b) Does the data on ENCR_onsite get decrypted as it vaulted to ENCR_offsite, where it is re-encrypted with the keys for ENCR_offsite?
If a) happens, I would assume NetBackup cannot understand how to double-un-encrypt the data, correct?