Key vault type and vendor – Brocade Network Advisor SAN + IP User Manual v12.3.0 User Manual

Brocade Network Advisor SAN + IP User Manual

993

53-1003155-01

Key Management Interoperability Protocol

25

Key vault type and vendor

The key vault type for any KMIP-compliant key vault is shown on the Brocade Encryption
Switchswitch as “KMIP” in the groupcfg output. The key vault vendor or key manager name is
displayed under “Server SDK Version”.

Sample groupCfg output for SafeNet KeySecure is provided:

SafeNet

switch:root> cryptocfg --show -groupcfg

Encryption Group Name:

CRYPTO_LSWAT

Failback mode:

Auto

Replication mode:

Disabled

Heartbeat misses:

3

Heartbeat timeout:

2

Key Vault Type:

KMIP

System Card:

Disabled

Primary Key Vault:

IP address:

10.38.145.10

Certificate ID:

LKM10_CA

Certificate label:

SSKM_10

State:

Connected

Type:

KMIP

Secondary Key Vault:

IP address:

10.38.145.17

Certificate ID:

LKM10_CA

Certificate label:

SSKM_17

State:

Connected

Type:

KMIP

Additional Primary Key Vault Information::

Key Vault/CA Certificate Validity:

Yes

Port for Key Vault Connection:

5696

Time of Day on Key Server:

N/A

Server SDK Version:

SafeNet, Inc.

Additional Secondary Key Vault Information:

Key Vault/CA Certificate Validity:

Yes

Port for Key Vault Connection:

5696

Time of Day on Key Server:

N/A

Server SDK Version:

SafeNet, Inc.

Encryption Node (Key Vault Client) Information:

Node KAC Certificate Validity:

Yes

Time of Day on the Switch:

2012-12-20 07:33:44

Client SDK Version:

N/A

Client Username:

brcduser

Client Usergroup:

brocade

Connection Timeout:

10 seconds

Response Timeout:

10 seconds

Connection Idle Timeout:

N/A

Key Vault configuration and connectivity checks successful, ready for key

operations.