Understanding configuration status results – Brocade Fabric OS Encryption Administrator’s Guide Supporting Key Management Interoperability Protocol (KMIP) Key-Compliant Environments (Supporting Fabric OS v7.1.0) User Manual
Page 78

60
Fabric OS Encryption Administrator’s Guide (KMIP)
53-1002747-02
Creating an encryption group
2
All configuration items have green check marks if the configuration is successful. A red stop
sign indicates a failed step. A message displays below the table, indicating the encryption
switch was added to the group you named, and the public key certificate is stored in the
location you specified.
After configuration of the encryption group is completed, BNA sends API commands to verify
the switch configuration.
15. Click Next.
The Next Steps dialog box displays (
). Instructions for installing public key certificates
for the encryption switch are displayed.
FIGURE 52
Next Steps dialog box
16. Review the post-configuration instructions, which you can copy to a clipboard or print for later,
then click Finish to exit the Configure Switch Encryption wizard.
17. Refer to
“Understanding configuration status results”
.
Understanding configuration status results
After configuration of the encryption group is completed, BNA sends API commands to verify the
switch configuration. The CLI commands are detailed in the encryption administrator’s guide for
your key vault management system.
1. Initialize the switch. If the switch is not already in the initiated state, BNA performs the
cryptocfg
--
initnode command.
2. Create an encryption group on the switch. BNA creates a new group using the cryptocfg
--
create
-
encgroup command, and sets the key vault type using the cryptocfg
--
set
-
keyvault
command.