Brocade Fabric OS Encryption Administrator's Guide Supporting Fabric OS v6.2.0 (53-1001201-04, May 2009)
Encryption Administrator’s Guide 41
53-1001201-04
Configure Encryption for RKM key vaults
2
j. Click Finish.
9. For each node, create an identity as follows.
a. Select the Identities tab.
b. Click Create.
c. Enter a label for the node in the Name field. This is a user-defined identifier.
d. Select the Hardware Retail Group in the Identity Groups field.
e. Select the Operational User role in the Authorization field.
f. Click Browse and select the imported certificate <name>_kac_cert.pem> as the Identity
certificate.
g. Click Save.
Key vault address changes
Before you add or change a key vault address, you must install the public key certificates for all
switches in the encryption group on the key vault. Use the Encryption Group Properties dialog box
to check a switch’s connection status to the new key vault and to obtain the switch’s public key
certificate.
Before you remove a primary key vault, you must first remove the secondary (backup) key vault.
Remove a key vault by leaving the field blank. A primary key vault address and no backup key vault
address is allowed, but you cannot have a backup key vault address without a primary key vault
address.