Specifications
3-28
Cisco Wide Area Application Services Command Reference
OL-16451-01
Chapter 3 CLI Commands
cms secure-store
When you enable secure store on a WAE, the WAE initializes and retrieves a new encryption key from
the Central Manager. The WAE uses this key to encrypt WAFS password credentials stored on the WAE
and to encrypt the disk if disk encryption is also enabled. When you reboot the WAE after enabling
secure store, the WAE retrieves the key from the Central Manager automatically, allowing normal access
to the data that is stored in the WAAS persistent storage.
If you have made any other CLI configuration changes on a WAE within the datafeed poll rate time
interval (5 minutes by default) before you entered the cms secure-store command, you will lose those
prior configuration changes and you will need to redo them.
Examples The following example shows how to initialize and activate secure store encryption on the WAAS
Central Manager:
waas-cm# cms secure-store init
enter pass-phrase(case-sensitive, no less than 8 characters)*********
re-enter pass-phrase*********
successfully initialized secure-store.
waas-cm# cms secure-store open
Stopping CM.
Stopping key manager.
enter pass-phrase: *********
successfully updated cifs password in database.
***** WARNING : REBOOTING CM REQUIRES RE-OPENING SECURE STORE MANUALLY. AFTER REBOOT, DISK
ENCRYPTION AND CIFS PREPOSITION FEATURES ON REMOTE WAE(S) WILL NOT OPERATE PROPERLY UNTIL
USER RE-OPENS SECURE STORE ON CM BY INPUTTING THE PASSPHRASE *****
successfully opened secure-store.
Starting cms.
Starting key manager.
waas-cm#
The following example shows how to deactivates secure store encryption:
waas-cm# cms secure-store clear
stopping cms..stopped
stopping keymgr..stopped.
successfully updated cifs password in database.
secure-store clear
starting cms..started.
starting keymgr..started.
waas-cm#
Related Commands show cms secure-store