Fabric OS Encryption Administrator's Guide
Fabric OS Encryption Administrator’s Guide 205
53-1002159-03
Chapter
6
Maintenance and Troubleshooting
In this chapter
•Encryption group and HA cluster maintenance . . . . . . . . . . . . . . . . . . . . . . 205
•Encryption group merge and split use cases. . . . . . . . . . . . . . . . . . . . . . . . 213
•Encryption group database manual operations . . . . . . . . . . . . . . . . . . . . . 223
•Key vault diagnostics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223
•General encryption troubleshooting. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
•Troubleshooting examples using the CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . 229
•Management application encryption wizard troubleshooting . . . . . . . . . . 231
•LUN policy troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 234
•Loss of encryption group leader after power outage . . . . . . . . . . . . . . . . . 235
•MPIO and internal LUN states. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 236
•FS8-18 blade removal and replacement . . . . . . . . . . . . . . . . . . . . . . . . . . . 237
•BES removal and replacement . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 238
•Reclaiming the WWN base of a failed Brocade Encryption Switch . . . . . . 244
•Splitting an encryption group into two encryption groups . . . . . . . . . . . . . 244
•Moving a blade from one EG to another EG in the same fabric . . . . . . . . . 245
•Moving a BES from one EG to another EG in the same fabric . . . . . . . . . . 246
•Removing stale rekey information for a LUN . . . . . . . . . . . . . . . . . . . . . . . . 247
Encryption group and HA cluster maintenance
This section describes advanced configuration options that you can use to modify existing
encryption groups and HA clusters, and to recover from problems with one or more member nodes
in the group.
All group-wide configuration commands are executed on the group leader. Commands that clear
group-related states from an individual node are executed on the node. The commands require
Admin or SecurityAdmin permissions.
Displaying encryption group configuration or status information
You can use the - -show -egstatus command to display encryption group configuration information
and encryption group status information.
• - -show -egstatus -cfg Displays encryption group configuration information.
• - -show -egstatus- stat Displays encryption group status information.