Brocade Fabric OS Encryption Administrator’s Guide Supporting HP Secure Key Manager (SKM) and HP Enterprise Secure Key Manager (ESKM) Environments (Supporting Fabric OS v7.2.0) User Manual
Page 234
214
Fabric OS Encryption Administrator’s Guide (SKM/ESKM)
53-1002923-01
Deployment as part of an edge fabric
4
•
The encryption device creates the frame redirection zone automatically, consisting of host,
target, virtual target, and virtual initiator. when the target and host are configured on the
encryption device. In
, the encryption device is connected to the host edge fabric.
•
Create the frame redirection one consisting of host, target, virtual target, and virtual initiator in
the target edge fabric. The CLI command is zone
--
rdcreate [host wwn] [target wwn] [VI wwn]
[VT wwn][nonrestartable] [noFCR]. Always specify nonrestartable as policy for creating
redirection zones in case of the encryption device. The VI and VT port WWNs can be obtained
by running the cryptocfg
--
show
-
container
-
cfg command on the
encryption switch or blade. After the redirection zones are created, commit the configuration
with the cfgsave command.
•
Create the LSAN zone consisting of host, target, virtual target, and virtual initiator in both the
backbone fabric and the target edge fabrics. Refer to the Fabric OS Administrator’s Guide for
information about LSANs, LSAN zoning, and Fibre Channel routing (FCR) configurations.