DR Primary Sites Scenario 6 – Loss of Access to All On-Prem Infrastructure
If access to all on premise systems were affected, the following methodologies should be taken into consideration:
- Short-term outage: Passwords may be retrieved via AWS (or Azure) environment. In this event, emergency access to Password Safe may require release of passwords manually stored in physical safes.
- Longer-term outage: database restoration and key U-Series Appliance restoration into tertiary data centers. Note that U-Series Appliance backups contain all settings and encryption keys (not applicable if using external HSM). For DR environments, consideration must be given to host naming, IP address conflicts, domain name resolution, and firewall rules. It is also important to consider whether or not you care about password rotation in a DR scenario, or if you can wait until you have recovered.
This document is not intended to be a detailed blueprint of data center DR best practices but instead guidelines for cases where Privilege Management needs to be considered. Layers of redundancy will always mitigate a DR event but often it always comes back to that highest authority. For the system-super-user with access to all credentials in Password Safe - the ultimate break-glass may sometimes be to have a password written on a piece of paper in a vault.