Brocade Fabric OS Encryption Administrator's Guide v6.3.0 (53-1001341-02, July 2009)

ManualsBrandsHP ManualsStorageHP Encryption SAN Switch

Encryption Administrator’s Guide 241

53-1001341-02

key management system

LKM

, 12

RKM

, 12

key vaults

adding or changing using the management application

,

40

configuration

, 99

connection from switch

, 31

connections between encryption nodes

, 10

entering the IP address or host name for

, 39

entering the name of the file holding the certificate

, 39

setting up LKM

, 96

setting up RKM

, 218

L

labeling

CommVault Galaxy

, 121

NetBackup

, 122

NetWorker

, 122

latency in re-key operations

, 159

leave command, --leave_encryption_group

, 164

license, adding

, 6

licensing

best practices

, 6

Lifetime Key Manager (LKM)

description of

, 204

link keys, creating

, 31

LKM

creating link keys

, 31

key vault setup steps

, 96

support for high availability (HA)

, 209, 226

LKM key management system

, 12

LUN

adding Crypto LUN to CryptoTarget container

, 110

adding to a CryptoTarget container

, 109

choosing to be added to an encryption target

container

, 65

configuration warning

, 102, 106, 107, 108, 109, 110,

111, 112, 114, 117

configuring for first-time encryption

, 129

configuring for multi-path example

, 117

configuring policies using the CLI

, 112

editing a re-keying interval

, 64

force-enabling for encryption

, 115

impact of policy changes

, 124

modifying parameters using the CLI

, 114

multi-path configuration requirements

, 103

policy for DF-compatibility disk LUNs

, 195

policy for DF-compatibility tape LUNs

, 199

policy for DF-compatibility tape pools

, 199

policy parameters

, 114

removing Crypto LUN to CryptoTarget container

, 111

selecting the encryption mode

, 64

setting policy for automatic re-keying

, 126

M

manual command, --manual_rekey, 127

manual re-key

, 159

master key

active

, 67

alternate

, 68

backing up

, 12

backup

, 68

create new master key

, 68

creating a new

, 76

description of

, 67

generating

, 12

reasons they are disabled

, 68

restore master key

, 68

saving to a file

, 68

master key usage in RKM environments

, 157

modify commands

--modify -LUN

, 114, 116, 126, 129

--modify -tapepool

, 124

move commands, --move -container

, 108

multi-path

configuring Crypto LUN

configuring

for multi-path, 117

LUN configuration example

, 117

LUN configuration warning

, 114, 117

multi-path configuration for encrypted storage using the

Management application

, 59

multi-path LUN configuration requirements

, 103

multi-path LUN configuration warning

, 102, 106, 107,

108, 109, 110, 111, 112