High availability (ha) cluster configuration – Dell POWEREDGE M1000E User Manual

Fabric OS Command Reference

159

53-1001764-02

cryptoCfg

2

-keyID keyID

Specifies the master key ID. This option restores the master key from the key
vault. The master key ID was returned when it was backed up to the key vault
with the --exportmasterkey command. The -keyID and the -srcfile options are
mutually exclusive.

-srcfile filename

Specifies the file name when restoring the master key from a file in the
predetermined directory on the switch. Use this operand when the master key
was backed up to a file rather than to a key vault. The -keyID and the -srcfile
operands are mutually exclusive.

--

show -groupcfg

Displays the group-wide encryption policy configuration. This command is
valid on all member nodes and on the group leader.

--

show -groupmember

Displays detailed information for all encryption group members or for a single
member. This command is valid on all member nodes and on the group
leader. The following required operands are mutually exclusive:

-all

Displays information on all nodes in the existing encryption group.

node_WWN

Displays information on a single specified node. The node is identified by its
node WWN.

--

show -egstatus

Displays encryption group configuration or status information for all nodes in
the encryption group. The following operands are exclusive:

-cfg

Displays encryption group configuration information.

-stat

Displays encryption group status information.

--

sync -encgroup

Manually synchronizes the encryption group database belonging to the group
leader node with the databases of all member nodes that are out of sync. If
this command is invoked when the encryption group databases are in sync,
the command is ignored.

Note: When the encryption group is out of sync and the group leader reboots,
the newly selected group leader pushes its database information to all other
members. The new group leader’s database information may be different
from what was set up before the group leader was rebooted.

--

sync -securitydb Distributes the security database from the group leader node to all member

nodes. This operation can resolve problems with master key propagation.
The synchronization occurs every time this command is executed regardless
of whether or not the security database was in sync across all nodes in the
encryption group. This command is valid only on the group leader.

Function

3. High Availability (HA) cluster configuration

Synopsis

cryptocfg --help -hacluster

cryptocfg --create -hacluster HA_cluster_name [node_WWN [slot]] [node_WWN [slot]]

cryptocfg --delete -hacluster HA_cluster_name

cryptocfg --add -haclustermember HA_cluster_name node_WWN [slot] [node_WWN [slot]]

cryptocfg --remove -haclustermember HA_cluster_name node_WWN [slot] [node_WWN [slot]]