Adding a switch to an encryption group – Brocade Fabric OS Encryption Administrator’s Guide Supporting NetApp Lifetime Key Manager (LKM) and KeySecure Storage Secure Key Manager (SSKM) Environments (Supporting Fabric OS v7.2.0) User Manual
Page 62
44
Fabric OS Encryption Administrator’s Guide (LKM/SSKM)
53-1002925-01
Adding a switch to an encryption group
2
5. Create a new master key. (Opaque key vaults only). Brocade Network Advisor checks for a new
master key. New master keys are generated from the Security tab located in the Encryption
Group Properties dialog box.
NOTE
A master key is not generated if the key vault type is LKM. LKM manages DEK exchanges
through a trusted link, and the LKM appliance uses its own master key to encrypt DEKs.
6. Save the switch’s public key certificate to a file. Brocade Network Advisor saves the KAC
certificate in the specified file.
Adding a switch to an encryption group
The setup wizard allows you to either create a new encryption group, or add an encryption switch to
an existing encryption group. Use the following procedure to add a switch to an encryption group:
1. Select Configure > Encryption from the menu task bar to display the Encryption Center
dialog box. (Refer to
2. Select a switch to add from the Encryption Center Devices table, then select Switch >
Create/Add to Group from the menu task bar.
NOTE
The switch must not already be in an encryption group.
The Configure Switch Encryption wizard welcome screen displays. (Refer to
.)
FIGURE 27
Configure Switch Encryption wizard - welcome screen
3. Click Next.
The Designate Switch Membership dialog box displays. (Refer to
.)