Dell PowerVault TL4000 Dell PowerVault ML6000 Encryption Key Manager User's - Page 52

Synchronizing Data Between Two Key Manager Servers, Manual Synchronization

Get Dell PowerVault TL4000 PDF manuals and user guides View all Dell PowerVault TL4000 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 52 highlights

Note: The drive.acceptUnknownDrives property is set to false by default. Thus, the Encryption Key Manager will not add new drives to the drive table automatically. Choose the mode you wish to operate in and change the configuration accordingly. See Appendix B for details. Synchronizing Data Between Two Key Manager Servers The drive table and configuration properties file can be synchronized between two Encryption Key Manager servers. This can be done manually by using the CLI client sync command or automatically by setting four properties in the KeyManagerConfig.properties file. Notes Neither synchronization method acts on the keystore or key groups XML file. They must be copied manually. The automatic synchronization function is enabled only when a valid IP address is specified in the sync.ipaddress property of the KeyManagerConfig.properties file. See "Automatic Synchronization" on page 4-3. Manual Synchronization The manual method involves executing the CLI client sync command. The syntax is as follows: sync {-all | -config | -drivetab} -ipaddr ip_addr :sslport [-merge | -rewrite] This command sends the configuration file properties or the drive table information or both from the source (or sending) server to the destination (or receiving) server specified by the -ipaddr parameter. The receiving Encryption Key Manager server must be up and running. Required fields -all Send both the configuration properties file and the drive table information to the server specified by -ipaddr. -config Send only the configuration properties file to the server specified by -ipaddr. -drivetab Send only the drive table information to the server specified by -ipaddr. -ipaddr ip_addr:sslport specifies the address and ssl port of the receiving server. The sslport should match the value specified for "TransportListener.ssl.port" in the KeyManagerConfig.properties file of the receiving server. Optional fields -merge Merge (add) new drive table data with current data on receiving server. (The configuration file is always a rewrite.) This is the default. -rewrite Replace the current data on the receiving server with new data. 4-2 Dell Encryption Key Mgr User's Guide

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
Note:
The drive.acceptUnknownDrives property is set to
false
by default. Thus,
the Encryption Key Manager will not add new drives to the drive table
automatically. Choose the mode you wish to operate in and change the
configuration accordingly. See Appendix B for details.
Synchronizing Data Between Two Key Manager Servers
The drive table and configuration properties file can be synchronized between two
Encryption Key Manager servers. This can be done manually by using the CLI
client
sync
command or automatically by setting four properties in the
KeyManagerConfig.properties file.
Notes
Neither synchronization method acts on the keystore or key groups XML file.
They must be copied manually.
The automatic synchronization function is enabled only when a valid IP
address is specified in the sync.ipaddress property of the
KeyManagerConfig.properties file. See “Automatic Synchronization” on page
4-3.
Manual Synchronization
The manual method involves executing the CLI client
sync
command. The syntax
is as follows:
sync
{
-all
|
-config
|
-drivetab
}
-ipaddr
ip_addr
:
sslport
[
-merge
|
-rewrite
]
This command sends the configuration file properties or the drive table
information or both from the source (or sending) server to the destination (or
receiving) server specified by the
–ipaddr
parameter. The receiving Encryption Key
Manager server must be up and running.
Required fields
-all
Send both the configuration properties file and the drive table information to
the server specified by
-ipaddr
.
-config
Send only the configuration properties file to the server specified by
-ipaddr
.
-drivetab
Send only the drive table information to the server specified by
-ipaddr
.
-ipaddr
ip_addr:sslport
specifies the address and ssl port of the receiving server. The
sslport
should match the value specified for “TransportListener.ssl.port” in the
KeyManagerConfig.properties file of the receiving server.
Optional fields
-merge
Merge (add) new drive table data with current data on receiving server. (The
configuration file is always a rewrite.) This is the default.
-rewrite
Replace the current data on the receiving server with new data.
4-2
Dell Encryption Key Mgr User's Guide