Fabric OS Encryption Administrator's Guide
Fabric OS Encryption Administrator’s Guide 37
53-1002159-03
Steps for Migrating from SKM to ESKM
2
NOTE
If the earlier configuration was done for SKM using CLI and if the previously imported CA
certificate was not deleted (using the command cryptocfg
--file -delete), the CA file that was
previously imported can be reused, and importing the CA certificate is not required.
3. Register ESKM using the command cryptocfg
--reg –keyvault.
Steps required using Brocade Management application
1. Select Configure > Encryption from the menu task bar.
The Encryption Center dialog box displays.
2. Select an encryption group from the Encryption Center Devices table, then select Group >
Properties from the menu task bar, or right-click a group and select Properties.
The Encryption Group Properties dialog box displays.
FIGURE 19 Encryption Group Properties dialog box
3. Enter the new ESKM key vault IP address in the Primary Key Vault IP Address field.
4. Download the ESKM local CA certificate.
a. From the Security tab, select Local CAs under Certificates and CAs.
b. Select the CA certificate you created.