Administrator Guide
Table Of Contents
- Dell EMC PowerVault ME4 Series Storage System Administrator’s Guide
- Contents
- Getting started
- New user setup
- Configure and provision a new storage system
- Using the PowerVault Manager interface
- System concepts
- About virtual and linear storage
- About disk groups
- About RAID levels
- About ADAPT
- About SSDs
- About SSD read cache
- About spares
- About pools
- About volumes and volume groups
- About volume cache options
- About thin provisioning
- About automated tiered storage
- About initiators, hosts, and host groups
- About volume mapping
- About operating with a single controller
- About snapshots
- About copying volumes
- About reconstruction
- About quick rebuild
- About performance statistics
- About firmware updates
- About managed logs
- About SupportAssist
- About CloudIQ
- About configuring DNS settings
- About replicating virtual volumes
- About the Full Disk Encryption feature
- About data protection with a single controller
- Working in the Home topic
- Guided setup
- Provisioning disk groups and pools
- Attaching hosts and volumes in the Host Setup wizard
- Overall system status
- Configuring system settings
- Managing scheduled tasks
- Working in the System topic
- Viewing system components
- Systems Settings panel
- Resetting host ports
- Rescanning disk channels
- Clearing disk metadata
- Updating firmware
- Changing FDE settings
- Configuring advanced settings
- Changing disk settings
- Changing system cache settings
- Configuring partner firmware update
- Configuring system utilities
- Using maintenance mode
- Restarting or shutting down controllers
- Working in the Hosts topic
- Working in the Pools topic
- Working in the Volumes topic
- Viewing volumes
- Creating a virtual volume
- Creating a linear volume
- Modifying a volume
- Copying a volume or snapshot
- Abort a volume copy
- Adding volumes to a volume group
- Removing volumes from a volume group
- Renaming a volume group
- Remove volume groups
- Rolling back a virtual volume
- Deleting volumes and snapshots
- Creating snapshots
- Resetting a snapshot
- Creating a replication set from the Volumes topic
- Initiating or scheduling a replication from the Volumes topic
- Manage replication schedules from the Volumes topic
- Working in the Mappings topic
- Working in the Replications topic
- About replicating virtual volumes in the Replications topic
- Replication prerequisites
- Replication process
- Creating a virtual pool for replication
- Setting up snapshot space management in the context of replication
- Replication and empty allocated pages
- Disaster recovery
- Accessing the data while keeping the replication set intact
- Accessing the data from the backup system as if it were the primary system
- Disaster recovery procedures
- Viewing replications
- Querying a peer connection
- Creating a peer connection
- Modifying a peer connection
- Deleting a peer connection
- Creating a replication set from the Replications topic
- Modifying a replication set
- Deleting a replication set
- Initiating or scheduling a replication from the Replications topic
- Stopping a replication
- Suspending a replication
- Resuming a replication
- Manage replication schedules from the Replications topic
- About replicating virtual volumes in the Replications topic
- Working in the Performance topic
- Working in the banner and footer
- Banner and footer overview
- Viewing system information
- Viewing certificate information
- Viewing connection information
- Viewing system date and time information
- Viewing user information
- Viewing health information
- Viewing event information
- Viewing capacity information
- Viewing host information
- Viewing tier information
- Viewing recent system activity
- Other management interfaces
- SNMP reference
- Using FTP and SFTP
- Using SMI-S
- Using SLP
- Administering a log-collection system
- Best practices
- System configuration limits
- Glossary of terms
The Full Disk Encryption panel opens with the FDE General Configuration tab selected.
2. Type a passphrase in the Passphrase field of the Set/Create Passphrase section. A passphrase is case-sensitive and can
include 8–32 printable UTF-8 characters except for the following: , < > \
3. Retype the passphrase in the Re-enter Passphrase field.
4. Perform one of the following:
● To secure the system now, click Secure, and then click Set. A dialog box confirms that the passphrase was changed
successfully.
● To save the passphrase without securing the system, click Set. A dialog box confirms that the passphrase was changed
successfully. To secure the system later, see Securing the system.
Clearing lock keys
Lock keys are generated from the passphrase and manage locking and unlocking the FDE-capable disks in the system. Clearing
the lock keys and power cycling the system denies access to data on the disks. Use this procedure when the system is not
under your physical control.
If the lock keys are cleared while the system is secured, the system enters the FDE lock-ready state, in preparation for the
system being powered down and transported.
After the system has been transported and powered up, the system and disks enter the Secured, Locked state, and volumes
become inaccessible. To restore access to data, re-type the original passphrase using the CLI command set fde-lock-key.
NOTE: The FDE tabs are dynamic, and the Clear All FDE Keys option is not available on a secured system until the current
passphrase is entered in the Current Passphrase field. (If you do not have a passphrase, the Clear All FDE Keys option
is not displayed. If you have a passphrase but have not entered it, you can view but not access this option.) If there is no
passphrase, set one using the procedure in Setting the passphrase.
Clear lock keys
Performing the steps to clear the lock keys:
1. In the System topic, select Action > Full Disk Encryption.
The Full Disk Encryption panel opens with the FDE General Configuration tab selected.
2. Enter the passphrase in the Current Passphrase field.
3. In the Secure System section, click the Secure button.
4. Click Clear.
A dialog box appears.
5. Perform one of the following:
● To clear the lock keys for the system, click OK.
● To cancel the request, click Cancel.
Securing the system
An FDE-capable system must be secured to enable FDE protection.
The FDE tabs are dynamic, and the Secure option is not available until the current passphrase is entered in the Current
Passphrase field. (If you do not have a passphrase, the Secure option is not displayed. If you have a passphrase but have not
entered it, you can view but not access this option.) If there is no passphrase, set one using the procedure in Setting the
passphrase.
Perform the following steps to secure the system:
1. In the System topic, select Action > Full Disk Encryption.
The Full Disk Encryption panel opens with the FDE General Configuration tab selected.
2. Type the passphrase in the Current Passphrase field.
3. Click Secure.
A message displays confirming that the system is in a secure state.
Working in the System topic
67