Brocade Communications Systems Brocade 8/12c Administrator's Manual page 116

2
Viewing and editing switch encryption properties
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
96
Switch Status - the health status of the switch. Possible values are Healthy, Marginal, Down,
Unknown, Unmonitored, and Unreachable.
Switch Membership Status - the alert or informational message description which details the
health status of the switch. Possible values are Group Member, Leader-Member Comm, Error,
Discovering, and Not a member.
Encryption Group - the name of the encryption group to which the switch belongs.
Encryption Group Status - Possible values are:
-
OK - Converged - the group leader can communicate with all members.
-
Degraded - the group leader cannot communicate with one or more members.
-
Unknown - the group leader is in an unmanaged fabric.
NOTE
When a group is in the Degraded state, the following operations are not allowed: key vault
changes, master key operations, enable/disable encryption engines, Failback mode changes,
HA Cluster creation or addition (removal is allowed), tape pool changes, and any configuration
changes for storage targets, hosts, and LUNs.
Fabric - the name of the fabric to which the switch belongs.
Domain ID - the domain ID of the selected switch.
Firmware Version - the current encryption firmware on the switch.
Primary Key Vault Link Key Status - the possible states are as follows:
-
Not Used – not used for SKM/ESKM key vaults.
Primary Key Vault Connection Status - whether the primary key vault link is connected.
Possible values are Unknown, Key Vault Not Configured, No Response, Failed authentication,
and Connected.
-
Not Used – not used for SKM/ESKM key vaults.
Public Key Certificate text box - the switch's KAC certificate, which must be installed on the
primary and backup key vaults.
Save As button - saves the certificate to a file in PEM format. The file may be loaded into the
key vault using the key vault's tools.
Encryption Engine Properties table - the properties for the encryption engine. There may be
0 to 4 slots, one for each encryption engine in the switch.
Current Status - the status of the encryption engine. There are many possible values, but
common values are Not Available (the engine is not initialized), Disabled, Operational, need
master/link key, and Online.
Set State To - enter a new value, enabled or disabled, and click OK to apply the change.
Total Targets - the number of the encrypted target device.
HA Cluster Peer - the name and location of the high-availability (HA) cluster peer (another
encryption engine in the same group), if in an HA configuration.
HA Cluster Name - the name of the HA cluster (for example, Cluster1), if in an HA configuration.
The name can have a maximum of 31 characters. Only letters, digits, and underscores are
allowed.
Media Type - the media type of the encryption engine. Possible values are Disk and Tape.
Fabric OS Encryption Administrator's Guide
53-1002159-03