The default entry page to the Data Recovery Manager (DRM) agent services is shown in Figure 2.3, “Data Recovery Manager Agent Services Page”. Only designated DRM agents, with a valid certificate in their client software, are authorized to access these pages.
A DRM agent performs the following tasks:
-
Lists key recovery requests from end entities.
-
Lists or searches for archived keys.
-
Recovers private data-encryption keys.
-
Authorizes and approves key recovery requests.
Key recovery requires the authorization of one or more recovery agents. The DRM administrator designates recovery agents. Typically, several recovery agents are required to approve key recovery requests in the DRM, so DRM administrators should designate more than one agent.
For more information on these tasks, see Chapter 7, DRM: Recovering Encrypted Data.