Disk device decommissioning – Brocade Network Advisor SAN User Manual v12.3.0 User Manual
Page 905
Brocade Network Advisor SAN User Manual
853
53-1003154-01
Disk device decommissioning
20
Disk device decommissioning
A disk device needs to be decommissioned when any of the following occurs:
•
The storage lease expires for an array, and devices must be returned or exchanged.
•
Storage is reprovisioned for movement between departments.
•
An array or device is removed from service.
In all cases, all data on the disk media must be rendered inaccessible. Device decommissioning
deletes all information that could be used to recover the data, for example, information related to
master key IDs and cache files.
NOTE
With regard to DPM, any DEK in the key vault that is either compromised, or needs to be deactivated
or destroyed, must first undergo the decommissioning procedure.
After device decommissioning is performed, the following actions occur:
•
Metadata on the LUN is erased and the reference is removed from cache on the switch.
•
The LUN state is shown as decommissioned in the key vault.
•
The LUN is removed from the container.
NOTE
The key IDs that were used for encrypting the data are returned.
When disk LUNs are decommissioned, the decommissioned keys are still stored on the switch. In
order to delete them from the switch, you must view them from the Decommissioned Key IDs dialog
box. (Refer to
.)
When a device decommission operation fails on the encryption Group Leader for any reason, the
crypto configuration remains uncommitted until a user-initiated commit or a subsequent device
decommission operation issued on the encryption Group Leader completes successfully. Device
decommission operations should always be issued from a committed configuration. If not, the
operation will fail with the error message An outstanding transaction is pending in Switch/EG. If
this occurs, you can resolve the problems by committing the configuration from the encryption
Group Leader.
Provided that the crypto configuration is not left uncommitted because of any crypto configuration
changes or a failed device decommission operation issued on a encryption Group Leader node,
this error message will not be seen for any device decommission operation issued serially on an
encryption group member node. If more than one device decommission operation is attempted in
an encryption group from member nodes simultaneously, this error message is transient and will
go away after device decommission operation is complete. If the device decommissioning
operation fails, retry the operation after some time has passed.
With the introduction of Fabric OS 7.1.0, all key vault types support the ability to decommission disk
LUNs. For earlier Fabric OS versions, (for example, Fabric OS 7.0.x) the command that is used to
decommission LUNs is only recognized on DPM (formerly RKM) and LKM/SSKM key vault types.