Manualshelf

Administrator Guide

ManualsBrandsDell ManualsCompellent (SCEMC PowerVault ME4012
61626364656667686970
Table 10. Activity progress properties and values (continued)
Property Value
2 – The operation is in progress. The other properties will indicate the progress item
(message, current, total, percent).
10 or higher – The operation for this component completed with a failure. The code and
message indicate the reason for the error.
Message A textual message indicating the progress status or error condition.
Changing FDE settings
In the Full Disk Encryption panel, you can change settings for these options:
FDE general configuration
Set the passphrase
Clear lock keys
Secure the system
Repurpose the system
Repurpose disks
Set import lock key IDs
Changing FDE general configuration
CAUTION:
Do not change FDE configuration settings while running I/O. Temporary data unavailability may result. Also,
the intended configuration change might not take effect.
Setting the passphrase
You can set the FDE passphrase the system uses to write to and read from FDE-capable disks. From the passphrase, the system
generates the lock key ID that is used to secure the FDE-capable disks. If the passphrase for a system is different from the passphrase
associated with a disk, the system cannot access data on the disks.
NOTE: Be sure to record the passphrase as it cannot be recovered if lost.
Set or change the passphrase
Perform the following steps to set the passphrase:
1. In the System topic, select Action > Full Disk Encryption.
The Full Disk Encryption panel opens with the FDE General Configuration tab selected.
2. Type a passphrase in the Passphrase field of the Set/Create Passphrase section. A passphrase is case-sensitive and can include 8–
32 printable UTF-8 characters except for the following: , < > \
3. Retype the passphrase in the Re-enter Passphrase field.
4. Perform one of the following:
To secure the system now, click Secure, and then click Set. A dialog box confirms that the passphrase was changed successfully.
To save the passphrase without securing the system, click Set. A dialog box confirms that the passphrase was changed
successfully. To secure the system later, see Securing the system.
Clearing lock keys
Lock keys are generated from the passphrase and manage locking and unlocking the FDE-capable disks in the system. Clearing the lock
keys and power cycling the system denies access to data on the disks. Use this procedure when the system is not under your physical
control.
If the lock keys are cleared while the system is secured, the system enters the FDE lock-ready state, in preparation for the system being
powered down and transported.
After the system has been transported and powered up, the system and disks enter the Secured, Locked state, and volumes become
inaccessible. To restore access to data, re-type the original passphrase using the CLI command set fde-lock-key.
Working in the System topic
63