Backing up the certificates, Configuring the kmip server, Adding a node to the cluster – Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual
Page 169
Fabric OS Encryption Administrator’s Guide (KMIP)
151
53-1002747-02
Steps for connecting to a KMIP appliance (SafeNet KeySecure)
3
3. Verify the cluster status is shown as Active.
4. Under Cluster Settings, click Download Cluster Key.
Backing up the certificates
1. From the SSKM Management Console, select the Device tab, then select Maintenance >
Backup & Restore > Create Backup.
2. Select the server certificate.
3. Select the local CA.
4. Select the High Security and FIPS Status Server check boxes.
Configuring the KMIP server
1. From the SSKM Management Console, select the Device tab, then select Device Configuration
> Key Server > Key Server.
The Cryptographic Key Server Configuration page displays.
2. Select KMIP as the protocol.
3. Specify the KMIP server port. The default is 5696.
4. Select the Use SSL check box.
Adding a node to the cluster
Perform the following steps on the secondary KeySecure node to add it to the cluster.
1. From the SSKM Management Console, select the Device tab, then select Device Configuration
> Cluster.
The Cluster Configuration page displays.
2. Under Join Cluster, perform the following steps:
a. Enter the first SSKM node IP address in the Cluster Member IP field.
b. Enter the Cluster Key File, or browse to the file location.
c. Enter the Cluster Password, then click Join.
You are returned to the Cluster Members table.
d. Verify that both nodes are shown as Active.
e. Select Restore Backup under Maintenance.
The Restore Backup dialog box displays.
f.
Select Upload from browser, then enter a file name, or browse to the file location.
g. Enter the Backup Password in the field provided, then click Restore.