Users Guide
Table Of Contents
- Lifecycle Controller User's Guide
- Introduction
- Using Lifecycle Controller
- Operating system deployment
- Monitor
- Hardware inventory view and export
- About view and export current inventory
- About view and export factory-shipped inventory
- Viewing hardware inventory — current or factory shipped
- Exporting hardware inventory — current or factory shipped
- Viewing or exporting hardware inventory after part replacement
- Viewing or exporting current inventory after resetting Lifecycle Controller
- Lifecycle Controller log
- Firmware update
- Configure
- System control panel access options
- Configuring iDRAC
- Configuring system time and date
- Configuring RAID
- Configuring RAID using software RAID
- Creating a secure virtual disk on a RAID controller
- Key encryption
- Local key encryption mode
- Breaking mirrored drives
- System setup — Advanced Hardware Configuration
- Collect system inventory on restart
- Configuring a local USB drive
- Configuring NFS and CIFS servers
- Conditions while configuring HTTP or HTTPS server
- Maintain
- Easy-to-use system component names
- Using the system setup and boot manager
- Troubleshooting and frequently asked questions
● Apply local encryption for PERC H730, H730P, H740, H740P, H745, H755, and H840 RAID controllers.
● Delete the local encryption key.
● Encrypt the existing unsecured virtual drives.
● To change an existing encryption key to another one.
NOTE: When PERC controllers H740, H740P, and H745 are set to Secure Enterprise Key Manager (SEKM) mode, they will
not be listed under Key Encryption feature.
Applying the local key on a RAID controller
Before applying the local key on a RAID controller, make sure that the controller is security-capable.
To apply the local key on a RAID controller:
1. Start Lifecycle Controller. For more information, see Starting Lifecycle Controller.
2. In the left pane, click Hardware Configuration.
3. In the right pane, click Configuration Wizards.
4. Under Storage Configuration wizards, click Key Encryption.
5. Select the controller to apply a local key and click Next.
6. Click Set up local key encryption and click Next.
NOTE: Some controller options are disabled if they do not support encryption.
7. Enter the Encryption Key Identifier that is associated with the entered passphrase.
The Encryption Key Identifier is a passphrase hint; you must enter the passphrase when Lifecycle Controller prompts this
hint.
8. In the New Passphrase field, enter a passphrase.
NOTE:
The controller uses the passphrase to encrypt the disk drive data. A valid passphrase contains 8–32 characters.
It must include a combination of uppercase and lowercase letters, numbers, and symbols without spaces.
9. In the Confirm Passphrase field, re-enter the passphrase, and then click Finish.
Local key encryption mode
You can perform the following tasks while the controller is in the Local Key Encryption mode:
NOTE:
For more information on the specification and configuration-related information for the PERC H740, H730, H840,
and PERC 9 controllers, see the PERC H740, H730, and H840 Technical Guidebooks.
● Encrypt unsecure virtual disks — Enable data encryption on all the security-capable, unsecure virtual drives.
NOTE: This option is available if there are secure-capable virtual disks connected to a security-capable controller.
● Rekey controller and encrypted disks with a new key — Replace the existing local key with a new key.
● Remove encryption and delete data — Delete the encryption key on the controller and all the secure virtual drives along with
its data. After deletion, controller state changes to No encryption mode.
Encrypting unsecure virtual disks
Make sure that the following prerequisites are met:
● Selected controller is security-capable.
● Security-capable virtual drives must be attached to the controller.
● Controller must be in the local-key-encryption mode.
To encrypt the unsecure virtual drives:
NOTE:
All virtual drives created on the same physical disk-drives are automatically encrypted when any one of the virtual
drives is encrypted.
1. Start Lifecycle Controller. For more information, see Starting Lifecycle Controller.
Configure
45