Brocade Fabric OS Command Reference Manual Supporting Fabric OS v6.4.0 (53-1001764-01, March 2010)

ManualsBrandsHP ManualsStorageBrocade 8/24c SAN Switch for BladeSystem c-Class

191

192

193

194

195

196

197

198

199

200

Fabric OS Command Reference 159

53-1001764-01

cryptoCfg

-keyID keyID Specifies the master key ID. This option restores the master key from the key

vault. The master key ID was returned when it was backed up to the key vault

with the --exportmasterkey command. The -keyID and the -srcfile options

are mutually exclusive.

-srcfile filename

Specifies the file name when restoring the master key from a file in the

predetermined directory on the switch. Use this operand when the master

key was backed up to a file rather than to a key vault. The -keyID and the

-srcfile operands are mutually exclusive.

--show -groupcfg Displays the group-wide encryption policy configuration. This command is

valid on all member nodes and on the group leader.

--show -groupmember

Displays detailed information for all encryption group members or for a single

member. This command is valid on all member nodes and on the group

leader. The following required operands are mutually exclusive:

-all Displays information on all nodes in the existing encryption group.

node_WWN Displays information on a single specified node. The node is identified by its

node WWN.

--show -egstatus

Displays encryption group configuration or status information for all nodes in

the encryption group. The following operands are exclusive:

-cfg Displays encryption group configuration information.

-stat Displays encryption group status information.

--sync -encgroup

Manually synchronizes the encryption group database belonging to the group

leader node with the databases of all member nodes that are out of sync. If

this command is invoked when the encryption group databases are in sync,

the command is ignored.

Note: When the encryption group is out of sync and the group leader reboots,

the newly selected group leader pushes its database information to all other

members. The new group leader’s database information may be different

from what was set up before the group leader was rebooted.

--sync -securitydb Distributes the security database from the group leader node to all member

nodes. This operation can resolve problems with master key propagation.

The synchronization occurs every time this command is executed regardless

of whether or not the security database was in sync across all nodes in the

encryption group. This command is valid only on the group leader.

Function 3. High Availability (HA) cluster configuration

Synopsis cryptocfg --help -hacluster

cryptocfg --create -hacluster HA_cluster_name [node_WWN [slot]] [node_WWN [slot]]

cryptocfg --delete -hacluster HA_cluster_name

cryptocfg --add -haclustermember HA_cluster_name node_WWN [slot] [node_WWN [slot]]

cryptocfg --remove -haclustermember HA_cluster_name node_WWN [

slot] [node_WWN [slot]]