Brocade Fabric OS Command Reference Manual Supporting Fabric OS v6.3.0 (53-1001337-01, July 2009)

ManualsBrandsHP ManualsStorageBrocade 8/24c Power Pack+ SAN Switch for BladeSystem c-Class

161

162

163

164

165

166

167

168

169

170

138 Fabric OS Command Reference

53-1001337-01

cryptoCfg

--show Displays node configuration information. This command requires one of the

following mutually exclusive operands:

-localEE Displays encryption engine information local to the node.

-file -all Displays all imported certificates. The -all parameter is required with the

--show -file command.

Function 2. Encryption group configuration

Synopsis cryptocfg --help -groupcfg

cryptocfg --create -encgroup encryption_group_name

cryptocfg --delete -encgroup encryption_group_name

cryptocfg --reg -keyvault cert_label certfile hostname | ip_address primary | secondary

cryptocfg --dereg -keyvault cert_label

cryptocfg --reg -KACcert signed_certfile primary | secondary

cryptocfg --set -keyvault LKM | RKM | SKM | NCKA

cryptocfg --set -failbackmode auto | manual

cryptocfg --set -hbmisses value

cryptocfg --set -hbtimeout value

cryptocfg --set -quorumsize value

cryptocfg --set -systemcard enable | disable

cryptocfg --add -membernode node_WWN

cryptocfg --eject -membernode node_WWN

cryptocfg --leave_encryption_group

cryptocfg --genmasterkey

cryptocfg --exportmasterkey [-file]

cryptocfg --recovermasterkey currentMK | alternateMK -keyID keyID | -srcfile filename

cryptocfg --show -groupcfg

cryptocfg --show -groupmember -all |

node_WWN

cryptocfg --show -egstatus -cfg | -stat

cryptocfg --sync -encgroup

Description Use these cryptoCfg commands to create or delete an encryption group, to add or remove group

member nodes, key vaults, and authentication cards, to enable or disable system cards, to enable

quorum authentication and set the quorum size, to manage keys including key recovery from

backup, to configure group-wide policies, and to sync the encryption group databases.

An encryption group is a collection of encryption engines that share the same key vault and are

managed as a group. All EEs in a node are part of the same encryption group. Fabric OS v6.2.0 and

later support up to four nodes per encryption group, and up to two encryption engines per node.

The maximum number of EEs per encryption group is sixteen (four per member node).