HP Brocade 8/12c Fabric OS Encryption Administrator's Guide - Page 246
General encryption troubleshooting
![]() |
View all HP Brocade 8/12c manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 246 highlights
6 General encryption troubleshooting General encryption troubleshooting Table 9 lists the commands you can use to check the health of your encryption setup. Table 10 provides additional information for failures you might encounter while configuring switches using the CLI. TABLE 9 Command General troubleshooting tips using the CLI Activity supportsave configshow cfgshow nsshow switch:SecurityAdmin> cryptocfg --show -groupcfg switch:SecurityAdmin> cryptocfg --show -groupmember -all Check whole system configuration. Run RAS logs. Run RAS traces. Run Security Processor (SP) logs (mainly kpd.log). Check whole system persistent configuration database dump. Check for SPM-, CVLM-, and CNM-related persistent database entries. Check for redirection zones starting with "red_xxx" in defined database for virtual and physical devices. Check for crypto virtual target and crypto virtual initiator entries for VT/VI Check key vault connection status. Check encryption group/cluster status. Note: CONVERGED status means the cluster is formed successfully. 1 Check encryption group/cluster member status. Note: DISCOVERED state means the member is currently part of a cluster. 2 Check encryption engine/SP and KEK status. Note: SP state ONLINE means encryption engine is enabled for encryption with valid KEK (Link Key or Master Key). TABLE 10 Problem General errors and conditions Resolution Connection to a key vault returns a "Not Responding" message. Determine if the default port has been changed on the key vault. LUN state for some LUNS remains in "initialize" state on the passive path. This is expected behavior. The LUNs exposed through Passive paths of the target array will be in either Initialize or LUN Discovery Complete state so long as the paths remain in passive condition. When the passive path becomes active, the LUN changes to Encryption Enabled. Use the --show -LUN command with the -stat option to check the LUN state. 226 Fabric OS Encryption Administrator's Guide 53-1002159-03
![](/manual_guide/products/hewlettpackard-brocade-812c-fabric-os-encryption-administrator039s-guide-2e9e911/246.png)