Unencrypting Data

You can use either of the following methods to unencrypt your data. The first requires you to copy the files to a temporary directory and the second requires you to use dataxform on the host system.

Copy Method

1. Stop all applications accessing the GuardPoint.

2. Log on as a user who can see clear text for all files in the GuardPoint.

3. Copy all files from the GuardPoint to a new directory that is not guarded.

4. In your key manager, unguard the GuardPoint. Make sure that it does not display in the key manager.

5. Delete all files in the original directory.

6. Copy all files from the unguarded/clear text directory to the original directory.

7. Start any application once all files have finished copying.

Dataxform Method

1. Stop any application accessing the GuardPoint.

2. In your key manager, clone the original policy that you used to encrypt the data.

3. In the cloned policy, reverse the keys. Put the original key in for the key_selection rule and the clear_key in for the transformation rule.

4. Guard the directory you want to unencrypt with the cloned policy.

   Note

   Make sure the status is green before you guard with that policy.

5. Run dataxform --cleanup on the GuardPoint:

   # dataxform --cleanup --gp /<dirName>

   For example:

   # dataxform --cleanup --gp /DataSecurity/myDir

6. On the host system, run dataxform --rekey on the GuardPoint:

   # dataxform --rekey --gp /<dirName> --preserve_modified_time

   For example:

   # dataxform --rekey --gp /DataSecurity/mydir --preserve_modified_time

7. In your key manager, unguard the Guard Point.

   The data should now be in clear text (unencrypted).