Users Guide

Chapter 8 Library Managed Encryption

Configuring the Dell Encryption Key Manager (EKM) on the Library

Dell PowerVault ML6000 User’s Guide 151

7 If you are using a secondary key server for failover purposes, enter

the IP address or host name of the secondary key server into the

Secondary Key Server IP Address or Host text box.

8 If you configured a secondary key server (previous step), enter the

port number for the secondary key server into the Secondary Key

Server Port Number

text box. The default port number is 3801 unless

SSL is enabled. If SSL is enabled, the default port number is 443.

9 Click Apply.

10 Ensure all ports corresponding to the EKM servers are open on your

firewall to allow the library to connect to the servers.

Note: If you do not plan to use a secondary key server, you may

type a zero IP address, 0.0.0.0, in the Secondary Key Server

IP Address or Host

text box, or you may leave the text box

blank.

Note: If you are using a secondary key server, then the port

numbers for both the primary and secondary key servers

must be set to the same value. If they are not,

synchronization and failover will not occur.

Note: You cannot edit the encryption system configuration

settings when any partition is enabled for library

managed encryption. If this happens, go to Setup >

Encryption > Partition Configuration, change all Dell

EKM partition settings from Library Managed to

Application Managed. Then make your changes to the

system configuration settings. Finally, go back and

change all the Dell LME partition settings to Library

Managed.