Manualshelf

Fabric OS Encryption Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP ISL Trunking Kit
41424344454647484950
Fabric OS Encryption Administrator’s Guide 27
53-1002159-03
Steps for connecting to an SKM or ESKM appliance
2
These steps are described in more detail in the following sections:
“Registering authentication cards from the database” on page 18
“Registering the SKM or ESKM Brocade group user name and password” on page 28
“Setting up the local Certificate Authority (CA) on SKM or ESKM” on page 29
“Downloading the local CA certificate from SKM or ESKM” on page 30
“Creating and installing the SKM or ESKM server certificate” on page 30
“Enabling SSL on the Key Management System (KMS) Server” on page 31
“Copying the local CA certificate for a clustered SKM or ESKM appliance” on page 33
“SKM or ESKM key vault high availability deployment” on page 36
Configuring a Brocade group on SKM or ESKM
A Brocade group is configured on SKM/ESKM for all keys created by Brocade encryption switches
and blades. This needs to be done only once for each key vault.
1. Log in to the SKM/ESKM management web console using the admin password.
2. Select the Security tab.
3. Select Local Users & Groups under Users and Groups.
The User & Group Configuration page displays.
4. Select Add under Local Users.
5. Create a Brocade user name and password.
you will need this user name and password later when registering this information with the
switches.
6. Select the User Administration Permission and Change Password Permission check boxes.
7. Se le ct Save to save this user data.
8. Select Add under Local Groups.
9. Add a Brocade group under Group.
The group name must be “brocade” and is case sensitive.
10. Select Save.
11. Select the new Brocade group name, and then select Properties.
Local Group Properties and a User List are displayed.
12. In the User List section, select or type the Brocade user name under Username.
13. Select Save.
The Brocade user name and password are now configured on SKM/ESKM.
NOTE
Fabric OS 6.2.0 uses brcduser1 as a standard user name when creating a Brocade group on
SKM/ESKM. If you downgrade to version 6.2.0, the user name is overwritten to brcduser1, and the
Brocade group user name must be changed to brcduser1.