Users Guide
Troubleshooting security key errors
Secured foreign import errors
A foreign conguration is a RAID conguration that already exists on a replacement physical disk that you install in a system. A secured
foreign conguration is a RAID conguration that was created under a dierent security key.
There are two scenarios in which a secured foreign import fails:
• The passphrase authentication fails—A VD secured with a security key dierent from the current controller security key cannot be
imported without authentication of the original passphrase used to secure them. Supply the correct passphrase to import the secured
foreign conguration. If you have lost or forgotten the passphrase, the secured foreign disks remain locked (inaccessible) until the
appropriate passphrase is entered or if they are cryptograhically erased.
• The secured VD is in an oine state after supplying the correct passphrase—You must check to determine why the virtual disk
failed and correct the problem. See the topic Troubleshooting.
Failure to select or congure non self-encrypting disks
A virtual disk can be either secured or unsecured depending on how it was congured when created. In order to create a secured virtual
disk, the controller must have a security key present and the VD must be contained on SEDs only. In order to select or congure non-SED,
you must create an unsecured virtual disk. You can create an unsecured virtual disk even if there is a security key. Select the Secure VD
option as No in the Create New VD menu.
NOTE
: For more information about creating unsecured virtual disks, see the
Dell Chassis Management Controller for Dell
PowerEdge VRTX User’s Guide
at Dell.com/poweredgemanuals.
Failure to delete security key
A security key is used to lock or unlock access to a security-enabled component. This key is not utilized in the actual encryption of data. If a
security key is present, both secured and unsecured virtual disks may exist.
To delete the security key, you must have a previously established security key present on the controller and there cannot be any
congured secured disks. If there are congured secured virtual disks, remove or delete them.
Failure to cryptograhic erase task on physical disks
Cryptograhic Erase is the process of securely erasing all data permanently on an encryption-capable physical disk and resetting the security
attributes. It is used in a couple of scenarios such as deleting a foreign conguration in the event of a forgotten or lost passphrase or
unlocking a disk that had been previously locked.
Cryptograhic Erase can be executed only on encryption-capable disks as long as the disks are not hot spares and are not congured (part
of a virtual disk). Ensure that the conditions are met.
50
Security key and RAID management