Many
Manuals
search
Categories
Brands
Home
Brocade Communications Systems
Network switches
Encryption Switch
Service Manual
Brocade Communications Systems Encryption Switch Service Manual Page 125
Download
Share
Sharing
Add to my manuals
Print
Page
/
326
Table of contents
TROUBLESHOOTING
BOOKMARKS
Rated
.
/ 5. Based on
customer reviews
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
Fabric OS Encryption Administrator
’s Guide (DPM)
107
53-1002720-02
Viewing tim
e left for auto rekey
2
FIGURE 79
Time lef
t for auto rekey
1
2
...
120
121
122
123
124
125
126
127
128
129
130
...
325
326
Fabric OS Encryption
1
Document History
2
Contents
3
53-1002720-02
10
About This Document
13
What’s new in this document
14
Document conventions
14
Command syntax conventions
15
Notes, cautions, and warnings
15
Additional information
16
Getting technical help
17
Document feedback
18
Encryption Overview
19
Terminology
20
The Brocade Encryption Switch
22
The FS8-18 blade
23
FIPS mode
23
Performance licensing
23
Usage limitations
24
FIGURE 2 Encryption overview
25
FIGURE 3 Frame redirection
26
IO Sync LAN
27
FIGURE 5 DEK life cycle
28
Master key management
29
Support for virtual fabrics
29
Encryption Center features
32
Encryption user privileges
33
Smart card usage
34
Using system cards
39
Deregistering system cards
41
Using smart cards
41
Tracking smart cards
42
Editing smart cards
44
Network connections
45
Blade processor links
45
(KAC) certificate
46
Encryption preparation
53
Creating an encryption group
53
Creating HA clusters
70
Failback option
72
Invoking failback
72
Adding an encryption target
73
FIGURE 46 Next Steps screen
81
Configuring storage arrays
89
Remote replication LUNs
89
SRDF pairs
90
Moving targets
94
Tape LUN statistics
97
Encryption engine rebalancing
102
Master keys
103
Active master key
104
Alternate master key
104
Master key actions
104
ATTENTION
106
Creating a master key
111
Security Settings
112
Setting zeroization
113
Redirection zones
115
Disk device decommissioning
115
Decommissioning disk LUNs
116
Displaying Universal IDs
118
Setting disk LUN Re-key All
119
Thin provisioned LUNs
123
Thin Provisioning support
124
Time left for auto rekey
125
General tab
131
Members tab
133
Members tab Remove button
134
Security tab
135
HA Clusters tab
137
Tape Pools tab
139
Adding tape pools
140
Engine Operations tab
141
TABLE 3 Encryption acronyms
142
In this chapter
143
Overview
144
Command validation checks
144
(Continued)
146
Cryptocfg Help command output
148
Management LAN configuration
148
Configuring cluster links
149
Node is a group leader node
150
Node is a member node
150
• FIPS crypto officer
151
• FIPS user
151
• Node CP certificate
151
Submitting the CSR to a CA
154
• cryptocfg --initEE
161
• cryptocfg --regEE
161
• cryptocfg --enableEE
161
High availability clusters
166
Creating an HA cluster
167
Policy Configuration Examples
170
Re-exporting a master key
171
Viewing the master key IDs
172
Zoning considerations
175
Frame redirection zoning
176
Gathering information
180
Crypto LUN configuration
184
Discovering a LUN
185
Configuring a Crypto LUN
186
Configuring a tape LUN
189
Decommissioning LUNs
193
SRDF LUNs
198
--set -replication enable
199
Adding replication LUNs
200
Reading metadata after sync
200
-newLUN option
201
TF snapshot rekeying details
207
-not_ready option of TF
208
<initiator PWWN>
208
ID> <initiator PWWN>
210
Tape pool configuration
212
CommVault Galaxy labeling
213
NetBackup labeling
213
Creating a tape pool
214
Deleting a tape pool
215
Modifying a tape pool
215
First-time encryption
220
Space reclamation
222
Data rekeying
223
Deployment Scenarios
227
--rdcreate [host wwn]
236
FIGURE 103 FCIP deployment
238
Data mirroring deployment
239
VMware ESX server deployments
241
General guidelines
244
HP-UX considerations
248
Enabling a disabled LUN
249
AIX Considerations
249
Disk metadata
250
Tape metadata
250
Tape data compression
251
Tape pools
251
Tape block zero handling
252
Tape key expiry
252
Avoid double encryption
254
PID failover
254
Manual rekey
255
Latency in rekey operations
255
Key Vault Best Practices
259
Tape Device LUN Mapping
259
Deleting an encryption group
265
Removing an HA cluster member
265
Deleting an HA cluster member
269
Failover/failback example
270
Recovery
271
-hbmisses and -hbtimeout
276
Key vault diagnostics
282
Command Activity
285
Problem Resolution
285
General errors and conditions
286
LUN policy troubleshooting
293
MPIO and internal LUN states
295
Multi-node EG replacement
296
Single-node EG replacement
298
Multi-node EG Case
299
Single-node EG Replacement
302
Deregistering a DPM key vault
305
TABLE 15 Compatibility Matrix
308
State and Status Information
311
Security processor KEK status
312
Encrypted LUN states
312
TABLE 22 Tape LUN states
315
Comments to this Manuals
No comments
Publish
Related products and manuals for Network switches Brocade Communications Systems Encryption Switch
Network switches Brocade Communications Systems AM866A - StorageWorks 8/8 Base SAN Switch Quick Specifications
(34 pages)
Network switches Brocade Communications Systems Brocade VDX 6710-54 User Manual
(8 pages)
Network switches Brocade Communications Systems 8/40 Service Manual
(46 pages)
Network switches Brocade Communications Systems VDX 8770-4 User Manual
(24 pages)
Network switches Brocade Communications Systems VDX 6720-24 User Manual
(8 pages)
Network switches Brocade Communications Systems NetIron CER Series Installation Guide
(120 pages)
Network switches Brocade Communications Systems 5300 User Manual
(46 pages)
Network switches Brocade Communications Systems 300 Installation Guide
(48 pages)
Network switches Brocade Communications Systems VDX 8770-4 Service Manual
(130 pages)
Network switches Brocade Communications Systems 800 Specifications
(49 pages)
Network switches Brocade Communications Systems Encryption Switch User Manual
(4 pages)
Network switches Brocade Communications Systems Brocade 8/24c Service Manual
(36 pages)
Network switches Brocade Communications Systems VA-40FC User Manual
(2 pages)
Network switches Brocade Communications Systems Converged Enhanced Ethernet 8000 Service Manual
(168 pages)
Network switches Brocade Communications Systems ServerIron ADX 12.4.00a Service Manual
(226 pages)
Network switches Brocade Communications Systems NetIron CER Series Manual
(56 pages)
Network switches Brocade Communications Systems 53-1001778-01 User Manual
(17 pages)
Network switches Brocade Communications Systems VDX 6720 Service Manual
(78 pages)
Network switches Brocade Communications Systems FCX624S-HPOE Installation Guide
(48 pages)
Network switches Brocade Communications Systems Brocade VDX 6710-54 Service Manual
(72 pages)
Print document
Print page 125
Comments to this Manuals