Brocade Fabric OS Encryption Administrator's Guide Supporting Fabric OS v6.2.0 (53-1001201-04, May 2009)
Encryption Administrator’s Guide 121
53-1001201-04
Key vault configuration
3
Adding the local CA to the trusted CAs list
You must now update the Trusted CAs list with the local CA name you created in step 3 of “Setting
up the local certificate authority”.
1. Select the Security tab on the SKM key manager.
2. Select Trusted CA Lists under Certificates and CAs.
The Trusted CA Lists page is displayed.
3. Select Default under Profile Name.
4. Click Properties.
A properties dialog box is displayed.
5. Click Edit.
A dialog box is displayed that allows you to Add CAs to a Trusted CAs list from a list of Available
CAs, or to Remove CAs from the Trusted CAs list and place them in the list of Available CAs.
6. In the Available CAs list, select the local CA name you created in step 3 of “Setting up the local
certificate authority”. and click Add to move the CA name to the Trusted CAs list.
7. Cli ck Save.
Adding a server certificate for the SKM appliance
A server certificate must be created for the SKM appliance.
1. Select the Security tab on the SKM key manager.
2. Select Certificates under Certificates and CAs.
The Certificate and CA Configuration page is displayed. This page includes a Create Request
Information dialog box.
3. Enter the following in the Create Request Information dialog box:
- Certificate Name - HPSKM_Server_029
- Common Name - HPSKM_Server_029
- Organization Name - Brocade
- Organizational Unit Name - Storage Software
- Locality Name - SJC
- State or Province Name - CA
- Country Name - US
- Email Address - support@brocade.com
- Key Size - 2048
NOTE
The names shown are examples. You may use other names. Remember the Certificate Name, or
write it down. You will need it later in the procedure for “Downloading the local CA certificate file”.
4. Select Create Certificate Request.
Successful completion is indicated when the new entry for the server certificate appears on
the Certificate List with a Certificate Status of Request Pending.