Creating an encryption group – Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual
Page 68
50
Fabric OS Encryption Administrator’s Guide (KMIP)
53-1002747-02
Creating an encryption group
2
•
An external host is available on the LAN to facilitate certificate exchange.
•
Switch KAC certificates have been signed by a CA and stored in a known location.
•
Key management system (key vault) certificates have been obtained and stored in a known
location.
Creating an encryption group
The following steps describe how to start and run the encryption setup wizard and create a new
encryption group.
NOTE
When a new encryption group is created, any existing tape pools in the switch are removed.
1. Select Configure > Encryption from the menu task bar to display the Encryption Center
dialog box (
).
FIGURE 41
Encryption Center dialog box - No group defined
2. Select a switch from the
assigned to an encryption group.)
3. Select Encryption > Create/Add to Group, from the menu task bar.
The Configure Switch Encryption wizard welcome screen displays (
). The wizard enables
you to create a new encryption group, or add an encryption switch to an existing encryption group.
The wizard also enables you to configure switch encryption.
Click Next on each screen to advance to the next step in the wizard. Steps might vary slightly
depending on the key vault type selected, but the basic wizard steps are as follows.
1. Designate Switch Membership.
2. Create a new encryption group or add a switch to an existing encryption group.
3. Select the key vault.
4. Specify the public key filename.