beautypg.com

Displaying and deleting decommissioned key ids – Brocade Fabric OS Encryption Administrator’s Guide Supporting HP Secure Key Manager (SKM) and HP Enterprise Secure Key Manager (ESKM) Environments (Supporting Fabric OS v7.2.0) User Manual

Page 121

background image

Fabric OS Encryption Administrator’s Guide (SKM/ESKM)

101

53-1002923-01

Disk device decommissioning

2

If a rekey operation is currently in progress on a selected LUN, a message is displayed that
gives you a choice of doing a Forced Decommission, or to Cancel and try later after the rekey
operation is complete.

6. To check on the progress of the decommissioning operation, click Refresh. When

decommissioning is complete, the LUNs are removed from the Encryption Target LUNs table.

Displaying and deleting decommissioned key IDs

When disk LUNs are decommissioned, the process includes the disabling of the key record in the
key vault and indication that the key has been decommissioned. These decommissioned keys are
still stored on the switch. You can display, copy, and delete them as an additional security measure.

The Decommissioned Key IDs dialog box lists Key IDs that have been decommissioned at the key
vault. They should also be deleted from the switch for added security, and to create room for new
key IDs. Using this dialog box, you can delete key IDs that are decommissioned at the key vault, but
still stored on the switch.

In order to delete keys from the key vault, you need to know the Universal ID (UUID). To display
vendor-specific UUIDs of decommissioned key IDs, complete the following procedure:

1. Select Configure > Encryption from the menu task bar to display the Encryption Center

dialog box. (Refer to

Figure 1

on page 14.)

2. Select a switch from the Encryption Center Devices table, then select Switch >

Decommissioned key IDs from the menu task bar.

The Decommissioned Key IDs dialog box displays. (Refer to

Figure 69

.)

FIGURE 69

Decommissioned Key IDs dialog box

The dialog box contains the following information:

Decommissioned key IDs that have been decommissioned at the key vault are listed in a
table.

Universal ID button: Launches the Universal ID dialog box to display the universal ID for
each selected decommissioned key.

You need to know the Universal ID (UUID) associated with the decommissioned disk LUN
key IDs in order to delete keys from the key vault. You can display vendor-specific UUIDs of
decommissioned key IDs. For more information, refer to

“Displaying Universal IDs”

on

page 102.

Delete All button: Deletes all of the listed decommissioned key IDs.

See also other documents in the category Brocade Computer Accessories: