In order to ensure that the Microsoft 365 data that is backed up is secure, you must configure inSync to get the data encryption key (ekey).

inSync requires access to the ekey to initiate the scheduled backup of any Microsoft 365 app data. The ekey is used to encrypt the user data when it is being backed up to the inSync Cloud. This is part of the digital envelope encryption process that Druva strictly adheres to. Druva does not store ekey of the users and has no access to the data.

Use one of the following methods to enable inSync to get the user data encryption key(ekey):

You must have the Cloud Key Management feature enabled. For more information, see Configure Key Management for SaaS Apps.

If your organizational policies require complete control over the encryption of the data backed up by Druva, Enterprise Key Management is the solution for you. With Enterprise Key Management, you can use keys from your AWS Key Management Service (KMS) account to encrypt and decrypt your data. For more information, see Enterprise Key Management for Microsoft 365.