Data Center Fabric Manager Enterprise User Manual v10.3.X (53-1001357-01, November 2009)

ManualsBrandsHP ManualsSoftwareHP B-series SAN Network Advisor Software

541

542

543

544

545

546

547

548

549

550

514 DCFM Enterprise User Manual

53-1001357-01

Adding Target Disk LUNs for encryption

6. Select a host from the Host list.

There are two possible sources for the list of LUNs:

• Specify a range of LUN numbers and click Show LUNs. This fills the table with dummy LUN

information. This method works even if the target is offline. You can specify a range of LUN

numbers only if a host is chosen from the list. If All Hosts is selected, you will not be able to

specify a range but can discover LUNs.

• Request discovery and click Show LUNs. The switch queries the target to determine which

LUN numbers are visible to each configured host.

When you select a specific host, only the LUNs visible to that host are displayed. If you select

All Hosts, LUNs visible to all configured hosts are displayed. If a LUN is visible to multiple hosts,

it is listed once for each host.

7. Select the check box in the Add column to add a LUN. You can use the Select/De-select All

button to add all the LUNs, or to clear all selections.

8. Select the Current LUN State, which refers to data already on the LUN.

• If the LUN is not encrypted, the correct value is Clear Text.

• If the LUN was previously encrypted, select Encrypted.

• If you disable the existing LUN data, the current LUN state setting does not matter.

• The desired encryption mode.

• The disposition for Existing Data.

Warning: If the current LUN state is Clear Text and the desired state is encrypted, then a first

time re-key will occur. If the current LUN state is Encrypted and the desired LUN state is Clear

Text, a re-key will not occur. You may choose Disable from the Existing Data list to avoid this,

but then all data on the LUN is lost.

When changing an existing LUN to Clear Text, the data must be disabled, so it is recommended

you back up the LUN’s data first using a host-based application.

NOTE

For tape devices, the Existing Data components and the Current LUN State do not display.

9. If you want to enforce a Re-keying Interval, enter the number of days that you want to use a key

before obtaining a new key. A value of 0 is equivalent to Infinite, which is the default.

The Re-keying Interval field is editable only if the LUNs are encrypted. If Clear Text is selected

as the encryption mode, Re-Keying Interval is disabled.

NOTE

For disk LUNs, expiration of the re-keying interval automatically triggers generation of a new

key and starts a re-keying operation (reads and re-writes all data on the disk LUN).

10. Click OK.

11. Click Commit in the Encryption Targets dialog box when the LUNs have been added for all hosts

that will access them.

NOTE

If there are other hosts that will access the same physical LUNs by way of other target ports

(and thus other target containers), add the LUNs for the other hosts before you click Commit.