Brocade Communications Systems StoreFabric SN6500B Administrator's Manual page 291
Brocade fabric os encryption administrator's guide v7.1.0 (53-1002721-01, march 2013)
Hide thumbs
Also See for StoreFabric SN6500B:
- User manual (1505 pages) ,
- Command reference manual (1168 pages) ,
- Reference (934 pages)
Table of Contents
Advertisement
11. Invoke the following command to cleanup any WWN entries which are used earlier.
12. Recreate the EG with the same name as before using the following command.
13. Invoke configdownload from the previous uploaded configuration.
14. Enable the switch using the switchenable command.
15. Deregister both key vaults using the following command.
16. Export the KAC CSR from the new node and sign the CSR from the HP SKM/ESKM Local CA.
17. Import the signed CSR/Certificate onto the new node.
18. Register back the signed KAC CSR/Certificate onto the new node.
19. Register the new node KAC Certificate with the HP SKM/ESKM appliances and create a
20. Create the username and password on the new node same as created on the HP SKM/ESKM
21. In the case where the new node is single node encryption group, register the HP SKM/ESKM
22. If a master key is not present, restore the master key from a backed up copy. Procedures will
23. Check the encryption engine (EE) state using following command to ensure that the encryption
24. Set the defzone as allAccess on the new Brocade Encryption Switch, so the configuration from
25. Invoke the following command on the new Brocade Encryption Switch:
26. Reconnect the FC Cables to the new Brocade Encryption Switch.
27. Invoke the cfgsave command on any switch in that fabric. The fabric configuration from the
28. Verify that defzone is set as no access.
Fabric OS Encryption Administrator's Guide (SKM/ESKM)
53-1002721-01
Admin:switch> cryptocfg --reclaim -cleanup
Admin:switch> cryptocfg –create –encgroup <EG name>
Admin:switch> crypocfg –-dereg –keyvault <label name>
Admin:switch> cryptocfg --reg -KACcert
username and password for this node on the HP SKM/ESKM appliances under the group
"Brocade."
appliances using the following command:
Admin:switch> cryptocfg --reg -KACLogin
appliances IP and CA Certificate onto this node.
differ depending on the backup media used (for example, recovery smart cards, from the key
vault, from a file on the network, or a file on a USB-attached device). Refer to Chapter 2,
"Configuring Encryption Using the Management Application."
engine is online.
Admin:switch> cryptocfg --show -localEE
the Fabric is pushed to new Brocade Encryption Switch.
Admin:switch> cfgsave
existing fabric is merged into the new Brocade Encryption Switch.
Brocade Encryption Switch removal and replacement
6
343
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Brocade Communications Systems StoreFabric SN6500B
Related Products for Brocade Communications Systems StoreFabric SN6500B
- Brocade Communications Systems SN3000B
- Brocade Communications Systems FastIron SX 800
- Brocade Communications Systems FastIron SX 1600
- Brocade SX 800
- Brocade SX 1600
- Brocade Communications Systems ServerIron ADX
- Brocade Communications Systems Slim Rail Rack Mount
- Brocade Communications Systems SilkWorm 2000
- Brocade Communications Systems SI1000
- Brocade Communications Systems SI1000F
- Brocade Communications Systems SI4000
- Brocade Communications Systems SI10000
- Brocade Communications Systems Brocade 8/12c
- Brocade Communications Systems Brocade 8/24c
- Brocade Communications Systems Brocade BladeSystem 4/12
- Brocade Communications Systems Brocade BladeSystem 4/24