Manualshelf

Brocade Network Advisor SAN User Manual v11.1x (53-1002167-01, May 2011)

ManualsBrandsHP ManualsSoftwareHP B-series SAN Network Advisor Software
511512513514515516517518519520
Brocade Network Advisor SAN User Manual 473
53-1002167-01
Encryption preparation
18
Encryption preparation
Before you use the encryption setup wizard for the first time, you should have a detailed
configuration plan in place and available for reference. The encryption setup wizard assumes the
following:
You have a plan in place to organize encryption devices into encryption groups.
If you want redundancy and high availability in your implementation, you have a plan to create
high availability (HA) clusters of two encryption switches or blades to provide failover support.
All switches in the planned encryption group are interconnected on an I/O synch LAN.
The management ports on all encryption switches and 384-port Backbone Chassis CPs that
have encryption blades installed, have a LAN connection to the SAN management program and
are available for discovery.
A supported key management appliance is connected on the same LAN as the encryption
switches, 384-port Backbone Chassis CPs, and the SAN Management program.
An external host is available on the LAN to facilitate certificate exchange.
Switch KAC certificates have been signed by a CA and stored in a known location.
Key management system (key vault) certificates have been obtained and stored in a known
location.