Brocade Fabric OS Encryption Administrator's Guide Supporting Fabric OS v6.2.0 (53-1001201-04, May 2009)
112 Encryption Administrator’s Guide
53-1001201-04
Key vault configuration
3
i. Issue the DH response on the same node you issued the DH challenge in step a. to
retrieve the TAP from the NetApp LKM appliance. This step completes the LKM setup for a
given node.
SecurityAdmin:switch>cryptocfg --dhresponse 10.33.54.231
Operation succeeded.
j. Repeat steps 6 a. to i. for the each of the remaining member nodes.
7. Display encryption group member information. This example shows the encryption group
"brocade" with two member nodes, one group leader and one regular member. Primary key
vault link key is configured.
SecurityAdmin:switch>cryptocfg --show -groupmember -all
NODE LIST
Total Number of defined nodes:2
Group Leader Node Name: 10:00:00:05:1e:41:9a:7e
Encryption Group state: CLUSTER_STATE_CONVERGED
Node Name: 10:00:00:05:1e:41:9a:7e (current node)
State: DEF_NODE_STATE_DISCOVERED
Role: GroupLeader
IP Address: 10.32.244.71
Certificate: GL_cpcert.pem
Primary Link Key state: Valid
Primary Link KeyID: c6:3e:d1:d9:dc:62:79:6d:e4:46:de:26:f4:bc:6b:75
Secondary Link Key state:Not configured
Secondary Link KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
EE Slot: 0
SP state: Waiting for enableEE
Primary Link KeyID: c6:3e:d1:d9:dc:62:79:6d:e4:46:de:26:f4:bc:6b:75
Secondary Link KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 No
HA cluster membership
Node Name: 10:00:00:05:1e:39:14:00
State: DEF_NODE_STATE_DISCOVERED
Role: MemberNode
IP Address: 10.32.244.60
Certificate: enc1_cpcert.pem
Primary Link Key state: Valid
Primary Link KeyID: c6:3e:d1:d9:dc:62:79:6d:e4:46:de:26:f4:bc:6b:75
Secondary Link Key state:Not configured
Secondary Link KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
EE Slot: 0
SP state: Waiting for enableEE
Primary Link KeyID: c6:3e:d1:d9:dc:62:79:6d:e4:46:de:26:f4:bc:6b:75
Secondary Link KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
No HA cluster membership