beautypg.com

Brocade Fabric OS Encryption Administrator’s Guide Supporting HP Secure Key Manager (SKM) and HP Enterprise Secure Key Manager (ESKM) Environments (Supporting Fabric OS v7.2.0) User Manual

Page 297

background image

Fabric OS Encryption Administrator’s Guide (SKM/ESKM)

277

53-1002923-01

FS8-18 blade removal and replacement

6

3. If the replaced FS8-18 blade is in member node, invoke the following command to reclaim the

base WWN.

FabricAdmin:switch> cryptocfg --reclaimWWN –EE

4. Issue commit.

FabricAdmin:switch> cryptocfg --commit

5. Replace the old FS8-18 blade with the new FS8-18 blade and reconnect the FC cables and

I/O Link cables.

6. Insert the new FS8-18 blade in the same slot of the chassis that was used by the old FS8-18

blade. Reconnect the I/O sync ports to the same private LAN as the I/O sync ports of the old
blade, and confirm that the IP address of the I/O sync ports (Ge0 and Ge1) is same as the
previous IP address.

7. Zeroize the new encryption engine (EE) using the following command:

FabricAdmin:switch> cryptocfg –-zeroizeEE [slotnumber]

8. Invoke slotpoweroff and slotpoweron commands.

FabricAdmin:switch> slotpoweroff [slotnumber]

FabricAdmin:switch> slotpoweron [slotnumber]

9. If the encryption group (EG) has a system card authentication enabled, you need to reregister

the system card through the BNA client for the new EE. Refer to Chapter 2, Configuring
Encryption Using the Management Application.”

10. Initialize the new EE using the following command:

FabricAdmin:switch> cryptocfg –-initEE [slotnumber]

11. Register the new EE using the following command:

FabricAdmin:switch> cryptocfg -–regEE [slotnumber]

12. Enable the new EE using the following command:

FabricAdmin:switch> cryptocfg –-enableEE [slotnumber]

13. Verify the new FS8-18 blade EE has the same master key as the other EEs in the EG using the

following command:

FabricAdmin:switch> cryptocfg --show –groupmember –all

14. If a master key is not present, restore the master key from a backed up copy. Procedures will

differ depending on the backup media used (for example, recovery smart cards, from the key
vault, from a file on the network, or a file on a USB-attached device). Refer to Chapter 2,
Configuring Encryption Using the Management Application.”

15. Check the EE state using the following command to ensure that the EE is online.

FabricAdmin:switch> cryptocfg –show –localEE

See also other documents in the category Brocade Computer Accessories: