Data Center Fabric Manager Professional User Manual v10.3.X (53-1001355-01, November 2009)
DCFM Professional User Manual 343
53-1001355-01
Creating a new encryption group
12
• Create a new master key
The Management application checks for a new master key. New master keys are generated
from the Encryption Group Properties dialog box, Security tab. See “Creating a new master key”
on page 372 for more information.
• Save the switch’s public key certificate to a file
The Management application saves the KAC certificate into the specified file.
• Back up the master key to a file
The Management application saves the master key into the specified file. Note that a master
key is not generated if the key vault type is LKM. LKM manages DEK exchanges through a
trusted link, and the LKM appliance uses its own master key to encrypt DEKs.
19. Click Next.
The Read Instructions dialog box displays instructions for installing public key certificates for
the encryption switch. These instructions are specific to the key vault type. Copy or print these
instructions.
FIGURE 125 Read Instructions dialog box
20. Click Finish to exit the Configure Switch Encryption wizard.
At this point, a Next Steps dialog box is displayed, with brief instructions that are specific to
certificate exchanges between the switch and key manager you are using. Refer to Appendix A,
“Supported Key Management Systems” for more detailed instructions for certificate exchange
with each supported key manager, and refer to the key manager user documentation for
additional information.