Brocade Fabric OS Encryption Administrator's Guide v6.3.0 (53-1001341-02, July 2009)
50 Encryption Administrator’s Guide
53-1001341-02
Creating high availability (HA) clusters
2
8. Note Important Next Steps! below this message, and click Next.
Instructions for installing public key certificates for the encryption switch are displayed. These
instructions are specific to the key vault type. Copy or print these instructions.
FIGURE 34 Add switch to an encryption group - Next Steps dialog box
9. Click Finish to exit the Configure Switch Encryption wizard.
Creating high availability (HA) clusters
A high availability (HA) cluster is a group of exactly two encryption engines. One encryption engine
can take over encryption and decryption tasks for the other encryption engine, if that member fails
or becomes unreachable.
The following rules apply when configuring an HA cluster:
• All HA cluster configuration and related operations must be performed on the group leader.
• I/O sync links must be configured before creating an HA cluster. Refer to the Brocade Fabric
OS Encryption Administrator’s Guide for information about I/O sync link configuration.
• Configuration changes must be committed before they take effect. Any operation related to an
HA cluster that is performed without a commit operation will not survive across switch reboots,
power cycles, CP failover, or HA reboots.
• It is recommended that the HA cluster configuration be completed before you configure
storage devices for encryption.
• It is mandatory that the two encryption engines in the HA cluster belong to two different nodes
for true redundancy. This is always the case for Brocade encryption switches, but is not true if
two FS8-18 blades in the same DCX or DCX-4S chassis are configured in the same HA cluster.
In Fabric OS version 6.3.0 and later releases, HA cluster creation is blocked when encryption
engines belonging to FS8-18 blades in the same DCX or DCX-4S are specified.