Ha clusters tab – Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual
Page 153
Fabric OS Encryption Administrator’s Guide (KMIP)
135
53-1002747-02
Viewing and editing encryption group properties
2
•
Registered Authentication Cards table: Lists the registered authentication cards by Group Card
number, Card ID, the name of the person to which the card is assigned, and optional notes.
•
Register from Card Reader button: Launches the Add Authentication Card dialog box.
•
Register from Archive button: Launches the Add Authentication Card dialog box.
•
Deregister button: Deregisters authentication cards, thus enabling them to be removed from
the switch and the database.
Encryption is not allowed until the master key has been backed up.
NOTE
You must enable encryption engines before you back up or restore master keys.
NOTE
If all encryption engines are otherwise okay but are missing the master key, the following message
displays below the Master Key status:
“None of the encryption engines in this encryption group have a copy of the master
key. The master key should be restored from a backup.”
This situation can occur if all encryption engines in a group are zeroized and then re-enabled.
HA Clusters tab
The HA Clusters tab allows you to create and delete HA clusters, add encryption engines to and
remove encryption engines from HA clusters, and failback an engine. Changes are not applied to
the encryption group until you click OK.
Each HA Cluster must have exactly two encryption engines. The two encryption engines in the
cluster must be in the same fabric (they will always be in the same encryption group since only the
engines in the group are listed for selection).
HA clusters are groups of encryption engines that provide high availability features. If one of the
engines in the group fails or becomes unreachable, the other cluster member takes over the
encryption and decryption tasks of the failed encryption engine. An HA cluster consists of exactly
two encryption engines. See
The HA Clusters tab (
) is viewed from the Encryption Group Properties dialog box. To
access the HA Clusters tab, select a group from the Encryption Center Devices table, then select
Group > HA Clusters from the menu task bar. The Properties dialog box displays with the
HA Clusters tab selected.
NOTE
You can also select a group from the Encryption Center Devices table, then click the Properties icon.
The tab displays the includes the following information:
•
Non-HA Encryption Engines table: Displays a list of encryption engines that are not configured
for high-availability clustering
•
High-Availability Clusters table: A list of encryption engines that have been selected for
high-availability clustering.