The Netapp Datafort Management Console; Establishing The Trusted Link - Brocade Communications Systems Brocade BladeSystem 4/24 User Manual
Supporting dcfm 10.4.x
Hide thumbs
Also See for Brocade BladeSystem 4/24:
- User manual (830 pages) ,
- Command reference manual (894 pages) ,
- Documentation update (271 pages)
Table of Contents
Advertisement
20
The NetApp DataFort Management Console
The NetApp DataFort Management Console
The NetApp DataFort Management Console (DMC) must be installed on your PC or workstation to
complete certain procedures described in this appendix. Refer to the appropriate DMC product
documentation for DMC installation instructions. After you install DMC, do the following.
1. Launch the DMC.
2. Click the Appliance tab on the top panel.
3. Add the NetApp LKM appliance IP address or hostname.
4. Right-click the added IP address and log into the NetApp LKM key vault.
Establishing the trusted link
You must generate the trusted link establishment package (TEP) on all nodes to obtain a trusted
acceptance package (TAP) before you can establish a trusted link between each node and the
NetApp LKM appliance.
1. From the Encryption Center, select Group > Link Keys.
2. Select the switch, and click Establish.
3. Launch the NetApp DataFort Management Console (DMC) and click the View Unapproved
4. Select the switch, and click Approve and Create TAP.
5. Provide a label in the dialog box and click Approve to approve the TEP.
6. Save the TAP to a file (location does not matter).
7.
8. Select the switch in the link key status table, and click Accept to retrieve the TAP from the LKM
9. Repeat the above steps for each of the remaining member nodes.
508
The switch name displays in the link status table under Switch, with a Link Key Status of Link
Key requested, pending LKM approval.
This results in a Trusted link establishment package (TEP), which is needed to establish the
trusted link between the switch and the LKM appliance.
Trustees tab.
The switch is listed as openkey_trustee_<ip address>, where the IP address is the switch IP
address.
The Approve TEP dialog box displays. The TEP must be approved before a TAP can be created.
A list of recovery cards and recovery officers is displayed. TEP approval is done by a quorum of
recovery officers, using assigned recovery cards. Each recovery officer must individually insert
one of listed recovery cards into a card reader attached to the PC or workstation, enter the
password for that card, and click Start. The procedure is repeated until a quorum of recovery
officers has approved the TEP.
Select the Link Keys tab on the Encryption Group Properties dialog box.
appliance.
DCFM Enterprise User Manual
53-1001775-01
Advertisement
Chapters
Table of Contents
Troubleshooting
