Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsComputer equipmentEncryption Switch
201202203204205206207208209210
Fabric OS Encryption Administrator’s Guide (DPM) 183
53-1002720-02
Using SRDF, TimeFinder and RecoverPoint with encryption
3
Using SRDF, TimeFinder and RecoverPoint with encryption
The EMC Symmetrix Remote Data Facility (SRDF), TimeFinder (TF), and RecoverPoint (RP) work
together to provide reliable and efficient data recovery from a remote data facility:
SRDF transmits data that is being written to a local Symmetrix array to a remote Symmetrix
array. The replicated data facilitates a fast switchover to the remote site for data recovery.
TF provides local storage replication for increased application availability and faster data
recovery.
RP facilitates continuous data protection and continuous remote replication to enable
on-demand protection and point in time data recovery.
RecoverPoint Configuration Restrictions
The Brocade encryption solution only supports Clariion-based splitting operations. The Clariion
arrays at both the source and target sites must be configured so that the RP appliances have
dedicated cleartext target ports for access to the storage arrays. That is, every storage array target
port utilized by a RP appliance for access to the Clariion array must not be configured as a
CryptoTarget container.
Initial Configuration Requirements
The following are initial configuration requirements for SRDF, TF, and RP:
For SRDF and RP, it is assumed that there is a clustered pair of DPMs at the local site and a
clustered pair of DPMs at the remote site. The clustered pairs must then be configured as part
of the same key vault group
For TimeFinder, the source device (LUN) and the target device (LUN) must be located on the
same storage array.
NOTE
If replication is enabled, firmware downgrades to earlier Fabric OS releases will be disallowed until
the replication feature is disabled. The replication feature cannot be disabled if there are LUNs in
the Encryption Group (EG) configured with the -newLUN option.
SRDF/RP initial setup at the source (R1) site
Replication mode needs to be enabled before replicated LUNs can be added to the Brocade
Encryption Switch, and the master key must be exported.
1. Log in as Admin or SecurityAdmin.
2. Use the following command to enable EG wide replication mode:
SecurityAdmin:switch> cryptocfg --set -replication enable
3. Export the master key.
SecurityAdmin:switch> cryptocfg -exportmasterkey