beautypg.com

Brocade Fabric OS Encryption Administrator’s Guide Supporting RSA Data Protection Manager (DPM) Environments (Supporting Fabric OS v7.2.0) User Manual

Page 167

background image

Fabric OS Encryption Administrator’s Guide (DPM)

147

53-1002922-01

Generating and backing up the master key

3

IP address:

10.33.54.160

Certificate ID:

HPDPM_CA1

Certificate label: DPMCERT

State:

Connected

Type:

DPM

Secondary Key Vault not configured

NODE LIST

Total Number of defined nodes: 2

Group Leader Node Name: 10:00:00:05:1e:41:9a:7e

Encryption Group state: CLUSTER_STATE_CONVERGED

Node Name IP address Role

10:00:00:05:1e:41:9a:7e 10.32.244.71 GroupLeader(current node)

10:00:00:05:1e:39:14:00 10.32.244.60 MemberNode

6. Display the group membership information. Verify that the master key ID for all member nodes

is the same.

SecurityAdmin:switch> cryptocfg --show -groupmember -all

NODE LIST

Total Number of defined nodes:2

Group Leader Node Name: 10:00:00:05:1e:41:9a:7e

Encryption Group state: CLUSTER_STATE_CONVERGED

Node Name:

10:00:00:05:1e:41:9a:7e (current node)

State:

DEF_NODE_STATE_DISCOVERED

Role:

GroupLeader

IP Address:

10.32.244.71

Certificate:

GL_cpcert.pem

Current Master Key State: Configured

Current Master KeyID: 8f:88:45:32:8e:bf:eb:44:c4:bc:aa:2a:c1:69:94:2

Alternate Master Key State: Not configured

Alternate Master KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00

EE Slot:

0

SP state:

Waiting for enableEE

Current Master KeyID: 8f:88:45:32:8e:bf:eb:44:c4:bc:aa:2a:c1:69:94:2

Alternate Master KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00

No HA cluster membership

Node Name:

10:00:00:05:1e:39:14:00

State:

DEF_NODE_STATE_DISCOVERED

Role:

MemberNode

IP Address:

10.32.244.60

Certificate:

enc1_cpcert.pem

Current Master Key State: Configured

Current Master KeyID: 8f:88:45:32:8e:bf:eb:44:c4:bc:aa:2a:c1:69:94:2

Alternate Master Key State: Not configured

Alternate Master KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00

EE Slot:

0

SP state:

Waiting for enableEE

Current Master KeyID: 8f:88:45:32:8e:bf:eb:44:c4:bc:aa:2a:c1:69:94:2

Alternate Master KeyID: 00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00

No HA cluster membership

7. Display encryption group member information. This example shows the encryption group

brocade with two member nodes, one group leader and one regular member. No key vault or
HA cluster is configured, and the values for master key IDs are zero.