Information Not Included In An Upload; Node; Configuration Upload And Download Considerations - Brocade Communications Systems StoreFabric SN6500B Administrator's Manual

Configuration upload and download considerations

Security information is not included when you upload a configuration from an encryption switch or
blade. Extra steps are necessary before and after download to re-establish that information. The
following sections describe what information is included in a upload from an encryption group
leader and encryption group member load, what information is not included, and the steps to take
to re-establish the information.
Configuration upload at an encryption group leader node
A configuration upload performed at an encryption group leader node contains the following:
•
•
•
Configuration upload at an encryption group member node
A configuration upload at an individual encryption group member node contains the following:
•
•
•

Information not included in an upload

The following certificates will be not be present when the configuration is downloaded:
•
•
The Authentication Quorum size is included in the configuration upload for read-only purposes, but
is not set by a configuration download.
Fabric OS Encryption Administrator's Guide (SKM/ESKM)
53-1002721-01
The local switch configuration.
Encryption group-related configuration.
The encryption group-wide configuration of CryptoTargets, disk and tape LUNs, tape pools, HA
clusters, security, and key vaults.
The local switch configuration.
Encryption group-related configuration.
Encryption group-wide configuration of CryptoTargets, disk and tape LUNs, tape pools, HA
clusters, security, and key vaults.
External certificates imported on the switch:
-
key vault certificate
-
peer node/switch certificate
-
authentication card certificate
Certificates generated internally:
-
KAC certificate
-
CP certificate
-
FIPS officer and user certificates
Configuration upload and download considerations
5
287