HP 8/40 Brocade Fabric OS Command Reference v6.3.0 (53-1001337-01, July 2009) - Page 168
LKM | RKM | SKM | NCKA, member nodes, key vaults, and authentication cards
View all HP 8/40 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 168 highlights
2 cryptoCfg --show -localEE -file -all Displays node configuration information. This command requires one of the following mutually exclusive operands: Displays encryption engine information local to the node. Displays all imported certificates. The -all parameter is required with the --show -file command. Function 2. Encryption group configuration Synopsis cryptocfg --help -groupcfg cryptocfg --create -encgroup encryption_group_name cryptocfg --delete -encgroup encryption_group_name cryptocfg --reg -keyvault cert_label certfile hostname | ip_address primary | secondary cryptocfg --dereg -keyvault cert_label cryptocfg --reg -KACcert signed_certfile primary | secondary cryptocfg --set -keyvault LKM | RKM | SKM | NCKA cryptocfg --set -failbackmode auto | manual cryptocfg --set -hbmisses value cryptocfg --set -hbtimeout value cryptocfg --set -quorumsize value cryptocfg --set -systemcard enable | disable cryptocfg --add -membernode node_WWN cryptocfg --eject -membernode node_WWN cryptocfg --leave_encryption_group cryptocfg --genmasterkey cryptocfg --exportmasterkey [-file] cryptocfg --recovermasterkey currentMK | alternateMK -keyID keyID | -srcfile filename cryptocfg --show -groupcfg cryptocfg --show -groupmember -all | node_WWN cryptocfg --show -egstatus -cfg | -stat cryptocfg --sync -encgroup Description Use these cryptoCfg commands to create or delete an encryption group, to add or remove group member nodes, key vaults, and authentication cards, to enable or disable system cards, to enable quorum authentication and set the quorum size, to manage keys including key recovery from backup, to configure group-wide policies, and to sync the encryption group databases. An encryption group is a collection of encryption engines that share the same key vault and are managed as a group. All EEs in a node are part of the same encryption group. Fabric OS v6.2.0 and later support up to four nodes per encryption group, and up to two encryption engines per node. The maximum number of EEs per encryption group is sixteen (four per member node). 138 Fabric OS Command Reference 53-1001337-01