beautypg.com

Setting fips compliance, Creating a local ca, Creating a server certificate – Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual

Page 168: Creating a cluster

background image

150

Fabric OS Encryption Administrator’s Guide (KMIP)

53-1002747-02

Steps for connecting to a KMIP appliance (SafeNet KeySecure)

3

6. Configure the KMIP server. (Refer to

“Configuring the KMIP server”

on page 151.)

7. Add a secondary node to the cluster. (Refer to

“Adding a node to the cluster”

on page 151.)

Setting FIPS compliance

1. From the KMIP Server Security tab, go to Advanced Security, then select High Security.

2. Set FIPS Compliance to Yes.

This ensures that only TLS 1.0 connections are supported between the Brocade Encryption
Switch and the KMIP appliance.

Creating a local CA

1. From the SSKM Management Console, select the Security tab, then select Local CAs.

2. Complete the Create Local Certificate Authority fields to include the required organizational

unit information.

3. Click Create.

4. Verify the local CA is shown as Active.

Creating a server certificate

1. From the SSKM Management Console, select the Security tab, then select SSL Certificates.

2. Verify the server certificate status is shown as Request Pending.

3. Click the certificate name and copy the certificate contents.

4. Under Local CAs, select the local CA you just created, then click Sign Request.

5. Click Download after the request is signed, and save the certificate to a local location.

6. Go to SSL Certificates.

7. Click the server request, then click Install Certificate.

8. Paste the copied server certificate request contents in the Certificate Request text box, select

the Server certificate option, then click Sign Request.

a. Open the downloaded certificate.

9. Copy the content and paste it in the Certificate Installation text box, then click Save.

10. Verify the server certificate status is shown as Active.

Creating a cluster

1. From the SSKM Management Console, select the Device tab, then select Device Configuration

> Cluster.

The Cluster Configuration page displays.

2. Complete the Create Cluster dialog box with a user-defined password, then click Create.

See also other documents in the category Brocade Computer Accessories: