Brocade Communications Systems Brocade 8/12c Command Reference Manual page 190
Brocade fabric os command reference manual supporting fabric os v7.0.0 (april 2011)
Hide thumbs
Also See for Brocade 8/12c:
- User manual (1301 pages) ,
- Command reference manual (1080 pages) ,
- Reference (362 pages)
Table of Contents
Advertisement
22
cryptoCfg
--initEE
--regEE
--enableEE | --disableEE
156
Some of the certificates generated with this command may need to be exported
so that they can be registered with external entities, such as the key vault or the
group leader, for mutual authentication. Refer to the Fabric OS Encryption
Administrator's Guide for details.
The --initnode function must be performed before the --initEE function may be
performed.
Initializes the encryption engine (EE). This command generates critical security
parameters (CSPs) and certificates in the CryptoModule's security processor
(SP). The CP and the SP perform a certificate exchange to register respective
authorization data. Initialization must be performed on every encryption engine
before configuration options may be set and encryption may be enabled.
This command prompts for confirmation, because it overwrites any previously
generated identification or authentication data on the SP. Existing key encryption
keys (KEKs) such as link keys or master keys are erased. If this is not a first-time
initialization, make sure to export the master key before running this command. If
the encryption engine was configured with an LKM key vault, you will have to
reconfigure the key vault to regenerate the Trusted Link after initializing the
encryption engine.
The --initnode function must be performed before the --initEE function may be
performed.
slot
Specifies the slot number of the encryption engine to be initialized. This operand
is required on bladed systems.
Registers a previously initialized encryption engine with the CP or chassis. The
CP and the specified encryption engine perform a certificate exchange to register
respective authorization lists across the encryption engine's FIPS boundary. The
encryption blade's certificate is registered with the CP. The CP, FIPS Crypto
Officer, and FIPS User certificate are registered with the specified encryption
engine.
slot
Specifies the slot number of the encryption engine to be registered. This operand
is required on bladed systems.
Enables or disables an encryption engine to perform encryption. You must create
the encryption group and complete the key vault registration before you can
enable an encryption engine for encryption. In addition, you must re-enable the
encryption engine for encryption every time a Brocade Encryption Switch or DCX
chassis goes through a power cycle event or after issuing slotPowerOff followed
by slotPowerOn for an FS8-18 blade. This command is valid on all nodes.
slot
Specifies the slot number to identify the encryption engine. This operand is
required on bladed systems.
Fabric OS Command Reference
53-1001764-01
Advertisement
Chapters
Table of Contents
Related Manuals for Brocade Communications Systems Brocade 8/12c
Related Products for Brocade Communications Systems Brocade 8/12c
- Brocade Communications Systems Brocade 8/24c
- Brocade Communications Systems Brocade BladeSystem 4/24
- Brocade Communications Systems Brocade BladeSystem 4/12
- Brocade Communications Systems 8/24
- Brocade Communications Systems POWEREDGE 840
- Brocade Communications Systems 8/8
- Brocade Communications Systems 8/80
- Brocade Communications Systems 8
- Brocade Communications Systems Converged Enhanced Ethernet 8000
- Brocade Communications Systems 800
- Brocade Communications Systems 825
- Brocade Communications Systems 815
- Brocade Communications Systems 8Gb SAN Switch
- Brocade Communications Systems 8000 Series
- Brocade Communications Systems BROCADE 4424 BLADE SERVER 53-1000571-01
- Brocade Communications Systems Brocade Superx Series