Encryption Node Initialization And Certificate Generation - Brocade Communications Systems Brocade BladeSystem 4/24 User Manual
Supporting dcfm 10.4.x
Hide thumbs
Also See for Brocade BladeSystem 4/24:
- User manual (830 pages) ,
- Command reference manual (894 pages) ,
- Documentation update (271 pages)
Table of Contents
Advertisement
Encryption node initialization and certificate generation
When an encryption node is initialized, the following security parameters and certificates are
generated:
From the standpoint of external SAN management application operations, the FIPS crypto officer,
FIPS user, and node CP certificates are transparent to users. The KAC certificates are required for
operations with key managers. In most cases, KAC certificate signing requests must be sent to a
Certificate Authority (CA) for signing to provide authentication before the certificate can be used. In
all cases, signed KACs must be present on each switch.
Encryption nodes are initialized by the Configure Switch Encryption wizard when you confirm a
configuration.
Encryption nodes may also be initialized from the Encryption Center.
1. From the Encryption Center, select Switch > Init Node.
2. Select Yes to initialize the node.
DCFM Enterprise User Manual
53-1001775-01
•
FIPS crypto officer
•
FIPS user
•
Node CP certificate
•
A self-signed Key authentication center
•
A Key authentication center
The following warning displays.
Encryption node initialization and certificate generation
KAC) certificate
(
KAC) signing request (CSR)
(
20
503
Advertisement
Chapters
Table of Contents
Troubleshooting
