Redirection Zones; Re-Keying All Disk Luns Manually - Brocade Communications Systems Brocade 8/12c Administrator's Manual
Supporting hp secure key manager (skm) environments and hp enterprise secure key manager (eskm) environments
Hide thumbs
Also See for Brocade 8/12c:
- User manual (1301 pages) ,
- Command reference manual (1132 pages) ,
- Reference (362 pages)
Table of Contents
Advertisement
Redirection zones
It is recommended that you configure the host and target in the same zone before you configure
them for encryption. Doing so creates a redirection zone to redirect the host/target traffic through
the encryption engine; however, a redirection zone can only be created if the host and target are in
the same zone. If the host and target are not already configured in the same zone, you can
configure them for encryption, but you will still need to configure them in the same zone, which will
then enable you to create the redirection zone as a separate step.
NOTE
If the encryption group is busy when you click Commit, you are given the option to either force the
commit, or abort the changes. Click Commit to re-create the redirection zone.
Re-keying all disk LUNs manually
The encryption management application allows you to perform a manual rekey operation on all
encrypted primary disk LUNs and all non-replicated disk LUNs hosted on the encryption node that
are in the read-write state.
Manual rekey of all LUNs might take an extended period of time. The management application
allows manual rekey of no more than 10 LUNs concurrently. If the node has more than 10 LUNs,
additional LUN rekey operations will remain in the pending state until others have finished.
The following conditions must be satisfied for the manual re-key operation to run successfully:
•
•
•
•
In addition to providing the ability to launch manual re-key operations, the management application
also enables you to monitor their progress.
To re-key all disk LUNs on an encryption node, complete the following steps:
1. Select Configure > Encryption from the menu task bar.
2. Select the switch on which to perform a manual re-key from the Encryption Center Devices
Fabric OS Encryption Administrator's Guide
53-1002159-03
The Encryption Targets dialog box enables you to launch a variety of wizards and other related
dialog boxes.
The node on which you perform the manual rekey operation must be a member of an
encryption group, and that encryption group must have a key vault configured.
The node must be running Fabric OS 7.0.0 or later.
The encryption group must be in the converged state.
The target container that hosts the LUN must be online.
The Encryption Center dialog box displays.
table, then select Switch > Re-Key All from the menu task bar, or right-click the switch and
select Re-Key All.
Re-keying all disk LUNs manually
2
91
Advertisement
Table of Contents
Troubleshooting
