beautypg.com

7 safestore security options – Avago Technologies MegaRAID Fast Path Software User Manual

Page 227

background image

LSI Corporation Confidential

|

July 2011

Page 227

MegaRAID SAS Software User Guide

Chapter 5: MegaRAID Command Tool

|

SafeStore Security Options

5.7

SafeStore Security

Options

Use the commands in this section to manage the SafeStore Security feature. This
feature offers the ability to encrypt data on disks and use disk-based key management
to provide data security. With this feature, data is encrypted by the drives. You can
designate which data to encrypt at the individual virtual drive level.

This solution provides data protection in the event of theft or loss of physical drives.
With self-encrypting disks, if you remove a drive from its storage system or the server in
which it is housed, the data on that drive is encrypted and useless to anyone who
attempts to access without the appropriate security authorization.

Any encryption solution requires management of the encryption keys. This feature
provides a way to manage these keys. You can change the encryption key for all
ServeRAID controllers that are connected to SED drives. All SED drives, whether locked
or unlocked, always have an encryption key. This key is set by the drive and is always
active. When the drive is unlocked, the data to host from the drive (on reads) and from
the host to the drive cache (on writes) is always provided. However, when resting on
the drive platters, the data is always encrypted by the drive.

In the following options, [E0:S0, E1:S1] specifies the enclosure ID and slot ID for the
drive.

See

Chapter 3, SafeStore Disk Encryption

for more information about the SED feature.

Description

Displays the Advanced Software Options that are enabled on the controller
including the ones in trial mode.

Convention

MegaCli -ELF -Applykey key <-val> [Preview]
-aN|-a0,1,2|-aALL

Description

Applies the Activation Key either in preview mode or in real mode.

Convention

MegaCli -ELF -TransferToVault -aN|-a0,1,2|-aALL

Description

Transfers the Activated Advanced Software Options from NVRAM to
keyvault.

Convention

MegaCli -ELF -DeactivateTrialKey -aN|-a0,1,2|-aALL

Description

Deactivates the trial key.

Convention

MegaCli -ELF -ReHostInfo -aN|-a0,1,2|-aALL

Description

Displays the re-host information, and if re-hosting is necessary it displays the
controller and keyvault serial numbers.

Convention

MegaCli -ELF -ReHostComplete -aN|-a0,1,2|-aALL

Description

Indicates to the controller that re-host is complete.

Table 37: Software License Key

This manual is related to the following products:
See also other documents in the category Avago Technologies Hardware: