Engine operations tab – Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual

Page 157

Advertising
background image

Fabric OS Encryption Administrator’s Guide (KMIP)

139

53-1002747-02

Viewing and editing encryption group properties

2

4. Based on your selection, do one of the following:

If you selected Name as the Tape Pool Label Type, enter a name for the tape pool. This
name must match the tape pool label or tape ID that is configured on the tape
backup/restore application.

If you selected Number as the Tape Pool Label Type, enter a (hex) number for the tape
pool. This number must match the tape pool label or tape number that is configured on
the tape backup/restore application.

5. Select the Encryption Mode. Options are Clear Text, DF-Compatible Encryption, and Native

Encryption. Note the following:

The Key Lifespan (days) field is editable only if the tape pool is encrypted.

If Clear Text is selected as the encryption mode, the key lifespan is disabled.

NOTE

You cannot change the encryption mode after the tape pool I/O begins. .

6. Enter the number of days to use a key before obtaining a new one, if you choose to enforce a

key lifespan. The default is Infinite (a blank field or a value of 0), which is the recommended
setting.

NOTE

The key lifespan interval represents the key expiry timeout period for tapes or tape pools. You
can only enter the Key Lifespan field if the tape pool is encrypted. If Clear Text is selected as
the encryption mode, the Key Lifespan field is disabled.

7. Click OK.

Engine Operations tab

The Engine Operations tab enables you to replace an encryption engine in a switch with another
encryption engine in another switch within a DEK Cluster environment. A DEK Cluster is a set of
encryption engines that encrypt the same target storage device. DEK Clusters do not display in
BNA; they are an internal implementation feature and have no user-configurable properties. Refer
to

“Replacing an encryption engine in an encryption group”

on page 67.

The Engine Operations tab (

Figure 109

) is viewed from the Encryption Group Properties dialog box.

To access the Engine Operations tab, select a group from the Encryption Center Devices table, then
select Group > Engine Operations from the menu task bar. The Properties dialog box displays with
the Engine Operations tab selected.

NOTE

You can also select a group from the Encryption Center Devices table, then click the Properties icon.

You simply select the encryption engine you want to replace from the Engine list, select the
encryption engine to use for the group from the Replacement list, then click Replace.

Advertising
Popular Brands
Popular manuals