Cisco MDS 9000 Family Storage Media Encryption Configuration Guide - Release 4.x (OL-18091-01, February 2009)
Send documentation comments to mdsfeedback-doc@cisco.com
Contents
ii
Cisco MDS 9000 Family Storage Media Encryption Configuration Guide
OL-18091-01, Cisco MDS NX-OS Release 4.x
Software Requirements 1-10
Hardware Requirements 1-10
Cisco MDS 9000 Family 18/4-Port Multiservice Module (MSM-18/4) 1-10
Cisco MDS 9222i Multiservice Modular Switch 1-11
FC-Redirect-Capable Switches 1-11
Smart Card Readers 1-12
Cisco SME Prerequisites 1-12
Java Cryptography Extension Requirement 1-12
Zoning Requirement 1-12
FC-Redirect Requirements 1-12
Cisco Storage Media Encryption Security Overview 1-13
Additional Security Capabilities 1-13
CHAPTER
2 Getting Started 2-1
Cisco SME Installation 2-1
Cisco MDS 9000 Fabric Manager 2-2
Command Line Interface 2-2
Before You Begin 2-2
Enabling Clustering 2-3
Enabling Clustering Using Fabric Manager 2-3
Enabling Clustering Using Device Manager 2-5
Enabling Cisco SME 2-6
Enabling Cisco SME Using Fabric Manager 2-6
Enabling Cisco SME Using Device Manager 2-7
Enabling DNS 2-8
sme.useIP for IP Address or Name Selection 2-9
IP Access Lists for the Management Interface 2-9
Creating and Assigning Cisco SME Roles and Cisco SME Users 2-9
Configuring the AAA Roles 2-11
Creating and Assigning Cisco SME Roles Using Fabric Manager 2-11
Creating and Assigning Cisco SME Roles Using the CLI 2-12
Installing Fabric Manager, Fabric Manager Client, and Enabling HTTPS 2-12
Adding a Fabric and Changing the Fabric Name 2-13
Choosing a Key Manager 2-16
Using FC-Redirect with CFS Regions 2-17
Guidelines for Designing CFS Regions For FC-Redirect 2-17
Installing Smart Card Drivers 2-17
Obtaining and Installing Licenses 2-18
Cisco SME Configuration Overview 2-18