Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual
Page 74
56
Fabric OS Encryption Administrator’s Guide (KMIP)
53-1002747-02
Creating an encryption group
2
4. (Optional) Enter a Backup Key Vault IP address or hostname, and port number, and Backup
Certificate File, or browse to the desired location.
5. Select the method for user authentication. Options are:
•
Username and Password: Activates the Primary and Backup Key Vault User Names and
password fields for completion.
•
Username: Activates the Primary and Backup Key Vault User Names for completion.
•
None: Deactivates Primary and Backup Key Vault User Names and password fields.
6. Select the Certificate Type. Options are:
•
CA Signed: The Brocade Encryption Switch KAC certificate is signed by a CA, imported back
onto the Brocade Encryption Switch, and registered as a KAC certificate. The CA will be
registered as a key vault certificate on the Brocade Encryption Switch.
•
Self Signed: The self-signed certificates are exchanged and registered on both ends. The
key vault certificate is registered on the Brocade Encryption Switch, and the Brocade
Encryption Switch KAC certificate is registered on the key vault.
7. Click Next.
The Specify Public Key Certificate (KAC) File Name dialog box displays (
FIGURE 47
Specify Public Key Certificate (KAC) File Name dialog box
8. Enter the name of the file where the switch’s public key certificate is stored, or browse to the
desired location, then click Next.
The Specify Master Key File Name dialog box displays (
).