Force-enabling a disabled disk lun for encryption, Srdf luns – Brocade Fabric OS Encryption Administrator’s Guide Supporting RSA Data Protection Manager (DPM) Environments (Supporting Fabric OS v7.2.0) User Manual
Page 199
Fabric OS Encryption Administrator’s Guide (DPM)
179
53-1002922-01
Force-enabling a disabled disk LUN for encryption
3
6. Modify the LUN to encrypted.
FabricAdmin:switch> cryptocfg --modify -LUN
-encrypt
7. Enter the cryptocfg
--
enable
-
LUN command followed by the CryptoTarget container name,
the LUN Number, and the initiator PWWN.
FabricAdmin:switch> cryptocfg --enable -LUN my_disk_tgt 0x0 \
10:00:00:00:c9:2b:c9:3a
Operation Succeeded
Force-enabling a disabled disk LUN for encryption
You can force a disk LUN to become enabled for encryption when encryption is disabled on the
LUN. A LUN may become disabled for various reasons, such as a change in policy from encrypt to
cleartext when encrypted data (and metadata) exist on the LUN, a conflict between LUN policy and
LUN state, or a missing DEK in the key vault. Force-enabling a LUN while metadata exist on the LUN
may result in a loss of data and should be exercised with caution. Refer to Chapter 6,
on page 279 for a description of conditions under which a LUN may be disabled,
and for recommendations on re-enabling the LUN while minimizing the risk of data loss.
This procedure must be performed on the local switch that is hosting the LUN. No commit is
required to force-enable after executing this command.
1. Log in to the switch that hosts the LUN as Admin or FabricAdmin.
2. Enter the cryptocfg
--
enable
-
LUN command followed by the CryptoTarget container name,
the LUN Number, and the initiator PWWN.
FabricAdmin:switch> cryptocfg --enable -LUN my_disk_tgt 0x0 \
10:00:00:00:c9:2b:c9:3a
Operation Succeeded
SRDF LUNs
The Symmetrix Remote Data Facility (SRDF) transmits data that is being written to a local
Symmetrix array to a remote symmetrix array. The replicated data facilitates a fast switch-over to
the remote site for data recovery.
SRDF supports the following methods of data replication:
•
Synchronous Replication provides real-time mirroring of data between the source Symmetrix
and the target Symmetrix systems. Data is written simultaneously to the cache of both systems
in real time before the application I/O is completed, thus ensuring the highest possible data
availability.
•
Semi-Synchronous Replication writes data to the source system, completes the I/O, and then
synchronizes the data with the target system. Since the I/O is completed prior to synchronizing
data with the target system, this method provides an added performance advantage. A second
write will not be accepted on a Symmetrix source device until its target device has been
synchronized.