Best Practices for the Migration of a legacy Raw Device GuardPoint to an in-Place Data Transformation GuardPoint
Starting with CTE Agent v7.1.1, users can migrate an existing Raw Device GuardPoint to an in-Place Data Transformation GuardPoint. The migration steps described in this section make use of the in-Place Data Transformation process to re-encrypt existing data, within a device GuardPoint that was using an AES-CBC encryption key, to a new in-Place Data Transformation GuardPoint using an XTS/CBC-CS1 encryption key, all while preserving the existing data on the device.
You must use an in-Place Data Transformation policy for migration of legacy Raw Device GuardPoints to IDT.
Once the migration to an in-Place Data Transformation GuardPoint is completed, the new in-Place Data Transformation GuardPoint automatically makes use of the data reduction feature.