Technical data
178 Fabric OS Encryption Administrator’s Guide (DPM)
53-1002720-02
Decommissioning replicated LUNs
3
NOTE
Failure to rekey the secondary LUN might result in loss of data on the secondary LUN after the
primary LUN is decommissioned.
Decommissioning mirror R2 LUNs only
To decommission the secondary LUN, complete the following steps:
1. Log in as Admin or FabricAdmin.
2. Split the R1/R2 sync.
3. Make the R2 LUN write-enabled.
4. Decommission the R2 LUN.
FabricAdmin:switch> cryptocfg --decommission -container <container name>
-initiator <initiator PWWN> -LUN <lun number>
NOTE
Do not delete the key from the key vault.
Decommissioning primary R1 and mirror R2 LUN pairs
To decommission both the primary and secondary LUNs, complete the following steps:
1. Log in as Admin or FabricAdmin.
2. Split the R1/R2 sync.
3. Independently decommission the R1 and R2 LUNs.
a. Decommission the R1 LUN.
FabricAdmin:switch> cryptocfg --decommission -container <container name>
-initiator <initiator PWWN> -LUN <lun number>
b. Display the decommissioned key IDs.
FabricAdmin:switch>cryptocfg --show –decommissionedkeyids
c. Delete the respective key from the key vault. On the Brocade Encryption Switch, enter the
following command.
FabricAdmin:switch> cryptocfg --delete –decommissionedkeyids
d. Decommission the R2 LUN.
FabricAdmin:switch> cryptocfg --decommission -container <container name>
-initiator <initiator PWWN> -LUN <lun number>