Key vault type and vendor – Brocade Network Advisor SAN User Manual v12.3.0 User Manual
Page 763
Brocade Network Advisor SAN User Manual
711
53-1003154-01
Key Management Interoperability Protocol
20
Key vault type and vendor
The key vault type for any KMIP-compliant key vault is shown on the switch as “KMIP” in the
groupcfg output. The key vault vendor or key manager name is displayed under “Server SDK
Version”.
Sample groupCfg output for SafeNet KeySecure is provided:
SafeNet
switch:root> cryptocfg --show -groupcfg
Encryption Group Name:
CRYPTO_LSWAT
Failback mode:
Auto
Replication mode:
Disabled
Heartbeat misses:
3
Heartbeat timeout:
2
Key Vault Type:
KMIP
System Card:
Disabled
Primary Key Vault:
IP address:
10.38.145.10
Certificate ID:
LKM10_CA
Certificate label:
SSKM_10
State:
Connected
Type:
KMIP
Secondary Key Vault:
IP address:
10.38.145.17
Certificate ID:
LKM10_CA
Certificate label:
SSKM_17
State:
Connected
Type:
KMIP
Additional Primary Key Vault Information::
Key Vault/CA Certificate Validity:
Yes
Port for Key Vault Connection:
5696
Time of Day on Key Server:
N/A
Server SDK Version:
SafeNet, Inc.
Additional Secondary Key Vault Information:
Key Vault/CA Certificate Validity:
Yes
Port for Key Vault Connection:
5696
Time of Day on Key Server:
N/A
Server SDK Version:
SafeNet, Inc.
Encryption Node (Key Vault Client) Information:
Node KAC Certificate Validity:
Yes
Time of Day on the Switch:
2012-12-20 07:33:44
Client SDK Version:
N/A
Client Username:
brcduser
Client Usergroup:
brocade
Connection Timeout:
10 seconds
Response Timeout:
10 seconds
Connection Idle Timeout:
N/A
Key Vault configuration and connectivity checks successful, ready for key
operations.