Setting encryption node initialization, Steps for connecting to a dpm appliance – Brocade Fabric OS Encryption Administrator’s Guide Supporting RSA Data Protection Manager (DPM) Environments (Supporting Fabric OS v7.2.0) User Manual

Page 49

Advertising

Fabric OS Encryption Administrator’s Guide (DPM)

53-1002922-01

Steps for connecting to a DPM appliance

Setting encryption node initialization

Encryption nodes are initialized by the Configure Switch Encryption wizard when you confirm a
configuration. Encryption nodes may also be initialized from the Encryption Center dialog box.

1. Select a switch from the Encryption Center Devices table, then select Switch > Init Node from

the menu task bar.

2. Select Yes after reading the warning message to initialize the node.

Steps for connecting to a DPM appliance

All switches that you plan to include in an encryption group must have a secure connection to the
RSA Data Protection Manager (DPM). The following is a suggested order of steps needed to create
a secure connection to the DPM.

NOTE

The Brocade Encryption Switch uses the manual enrollment of identities with client registration to
connect with DPM 3.x servers. Client registration is done automatically when you upgrade to
Fabric 7.1.0 from an earlier Fabric OS version; no user interaction is required.

Once completed, client registration occurs after key vault registration, when the Brocade
Encryption Switch attempts to connect to the DPM server for the first time.

1. Export the KAC CSR to a location accessible to a CA for signing. Refer to

“Exporting the KAC

certificate signing request (CSR)”

on page 30.

2. Submit the KAC CSR for signing by a CA. Refer to

“Submitting the CSR to a certificate authority”

on page 30.

3. Set the KAC certificate registration expiry. Refer to

“KAC certificate registration expiry”

page 31.

4. Import the signed certificate into the Fabric OS encryption node. Refer to

“Importing the signed