Data Center Fabric Manager Enterprise User Manual v10.3.X (53-1001357-01, November 2009)
DCFM Enterprise User Manual 629
53-1001357-01
Creating an SKM Key vault High Availability cluster
A
6. Select the Device tab on the SKM key manager.
7. Sele ct KMS Server under Device Configuration.
The Key Management Services Configuration page is displayed.
8. Select Edit under KMS Server Settings.
9. Click the check boxes for the following:
- Use SSL
- Allow Key and Policy Configuration Operations
- Allow Key Export
10. Type in the server certificate name in the Server Certificate field.
11. Select Save to save these settings.
12. Select Edit under KMS Server Authentication Settings.
13. Select Required for Password Authentication.
14. Select Save to save these settings.
Creating an SKM Key vault High Availability cluster
The HP SKM key vault supports clustering of HP SKM appliances for high availability. If two SKM
key vaults are configured, they must be clustered. If only a single LKM key vault is configured, it
may be clustered for backup purposes, but it will not be directly used by the switch.
To create a cluster, perform the following steps on one of the HP SKM appliances that is to be a
member of the cluster
1. Select the Device tab on the SKM key manager.
2. Select Cluster under Device Configuration.
The Cluster Configuration page is displayed.
3. Type the cluster password under Create Cluster.
The default value for Local Port is 9001. This is the recommended value, and should not be
changed unless your IT department requires a different value.
4. Select Create.
5. Select Download Cluster Key under Cluster Settings.
6. Copy the cluster key and save it in a convenient location. This key is needed for “Adding an HP
SKM appliance to a cluster”. You will be able to browse to the location as part of that
procedure.
NOTE
Record the local IP address and cluster password for use in “Adding an HP SKM appliance to a
cluster”.