Backing up your Cold Wallet workspace's key shares protects your access to your assets if the Fireblocks service is ever disrupted. Non-Signing Admins (NSAs) can now approve backup requests without opening a support ticket, replacing the previous support ticket process.
Why back up your key shares
When you use Fireblocks Multi-Party Computation (MPC) wallets, you hold direct custody of your assets. As your own self-custodian, you are responsible for maintaining independent access to your private key.
Fireblocks stores two Cloud key shares of your workspace's full private key across separate Fireblocks data centers. Generating a backup ensures you can recover your assets from your Fireblocks Vault even if the Fireblocks service is unavailable.
Fireblocks recommends backing up your key shares within 14 days of creating your workspace. A reminder appears in the Fireblocks Console after you enroll your first mobile device.
Before you begin
Your workspace must have at least one user group consisting only of NSAs configured in your approval quorums. This group is required to approve the backup request.
Configure NSA approval for backups
By default, workspace key backups require workspace Owner approval. To allow NSAs to approve backups instead, update your approval settings.
- In the Console, go to Settings > Quorums.
- Under Approval groups, select Security & compliance.
- On the Create backups row, select Edit.
- Deselect Requires workspace owner approval.
- Select Requires approval of a specific group, choose your NSA group, and set the approval threshold.
- Select Save.
- Approve the change.
Generate a backup
Once NSA approval is configured, the workspace Owner initiates the backup from the Console and the NSA group approves it using the Fireblocks mobile app. The backup kit becomes available for download after approval.
For the full backup generation steps, see Generating a Workspace Key Backup Package.