Brocade Fabric OS Encryption Administrator's Guide v6.3.0 (53-1001341-02, July 2009)
208 Encryption Administrator’s Guide
53-1001341-02
The NetApp Lifetime Key Manager
D
Establishing the trusted link
You must generate the trusted link establishment package (TEP) on all nodes to obtain a trusted
acceptance package (TAP) before you can establish a trusted link between each node and the
NetApp LKM appliance. You must have a card reader attached to your PC or workstation to
complete the procedure.
NOTE
Complete all steps required to establish a trusted link between LKM and the encryption group
members for each node before proceeding to the next node.
1. Open an SSH connection to the NetApp LKM appliance and log in.
host$ssh admin@10.33.54.231
admin@10.33.54.231's password:
Copyright (c) 2001-2008 NetApp, Inc.
All rights reserved
+--------------------------------+
| NetApp Appliance Management CLI |
| Authorized use only! |
+--------------------------------+
Cannot read termcapdatabase;
using dumb terminal settings.
Checking system tamper status:
No physical intrusion detected.
2. To add the encryption group leader to an LKM appliance third party key sharing group, enter
lkmserver add
--type third-party --key-sharing-group "/" followed by the group leader IP
address.
lkm-1>lkmserver add --type third-party --key-sharing-group \
"/" 10.32.244.71
NOTICE: LKM Server third-party 10.32.244.71 added.
Cleartext connections not allowed.