Skip to main content
NetApp Knowledge Base

What is the dataflow architecture between Netapp Bluexp page and the databroker machine that will be storing the credential

  1. Last updated
  2. Save as PDF
Views:
41
Visibility:
Public
Votes:
0
Category:
cloud-sync
Specialty:
bluexp
Last Updated:

Applies to

  • ONTAP 9
  • Blue XP

Answer

  • The communication between the NetApp Cloud Sync or Cloud Backup page where the credentials are provided and the data broker machine follows a secure and encrypted process.
  • The user interacts with the NetApp Cloud Sync or Cloud Backup page to provide the required credentials for accessing the data source or destination.
  • When the user submits the credentials, the page encrypts the credentials using a secure encryption algorithm. This ensures that the sensitive information is protected during transmission.
  • The encrypted credentials are then transmitted securely from the NetApp Cloud Sync or Cloud Backup page to the data broker machine. This transmission typically occurs over a secure channel, such as HTTPS, to ensure data integrity and confidentiality.
  • The data broker machine receives the encrypted credentials. It is important to note that the data broker machine is deployed within the client's network, which adds an additional layer of security and control.
  • On the data broker machine, the encrypted credentials are locally decrypted using HashiCorp Vault. HashiCorp Vault is a popular tool for securely storing and managing secrets. The decrypted credentials are then securely stored on the data broker machine.

Additional Information

  • The use of HashiCorp Vault ensures that the credentials are stored securely and are protected from unauthorized access. Vault provides features such as encryption, access controls, and auditing to safeguard sensitive information.
  • Overall, the communication between the NetApp Cloud Sync or Cloud Backup page and the data broker machine is encrypted to protect the credentials during transmission. The credentials are securely stored on the data broker machine using HashiCorp Vault, providing an additional layer of security.
  • Credentials are not saved on NetApp.
  • Data privacy
NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.