Displaying universal ids, Rekeying all disk luns manually – Brocade Fabric OS Encryption Administrator’s Guide Supporting HP Secure Key Manager (SKM) and HP Enterprise Secure Key Manager (ESKM) Environments (Supporting Fabric OS v7.2.0) User Manual
Page 122
102
Fabric OS Encryption Administrator’s Guide (SKM/ESKM)
53-1002923-01
Rekeying all disk LUNs manually
2
3. Click Delete All to delete the decommissioned keys from the switch. As a precaution, copy the
keys to a secure location before deleting them from the switch. Right-click on an entry in the
table to individually select a key ID. You may also copy or export a single row within the table or
the entire table. To export the keys, right-click and select Export, which will export the key IDs.
Displaying Universal IDs
In order to delete keys from the key vaults, you need to know the Universal ID (UUID) associated
with the decommissioned disk LUN key IDs. To display the Universal IDs, complete the following
procedure:
1. Select Configure > Encryption from the menu task bar to display the Encryption Center
dialog box. (Refer to
2. Select a switch from the Encryption Center Devices table, then select Switch >
Decommissioned key IDs from the menu task bar.
The Decommissioned Key IDs dialog box displays. (Refer to
3. Select the desired decommissioned key IDs from the Decommissioned Key IDs table, then
click Universal ID.
The Universal IDs dialog box displays the universal ID for each selected decommissioned key
(Refer to
FIGURE 70
Universal IDs dialog box
4. Click Close.
NOTE
You will need to export the decommissioned key ID to the key vault.
Rekeying all disk LUNs manually
Brocade Network Advisor allows you to perform a manual rekey operation on all encrypted primary
disk LUNs and all non-replicated disk LUNs hosted on the encryption node that are in the read-write
state.
Manual rekeying of all LUNs might take an extended period of time. Brocade Network Advisor
allows manual rekey of no more than 10 LUNs concurrently. If the node has more than 10 LUNs,
additional LUN rekey operations will remain in the pending state until others have finished.