Fabric OS Encryption Administrator's Guide v6.4.0 (53-1001864-01, June 2010)
110 Fabric OS Encryption Administrator’s Guide
53-1001864-01
Steps for connecting to an SKM appliance
3
6. Use the cryptocfg - - show groupcfg command to verify that the key vault state is Connected.
Mace_127:admin> cryptocg --show groupcfg
rbash: cryptocg: command not found
Mace_127:admin> cryptocfg --show -groupcfg
Encryption Group Name: mace127_mace129
Failback mode: Auto
Replication mode: Disabled
Heartbeat misses: 3
Heartbeat timeout: 2
Key Vault Type: SKM
System Card: Disabled
Primary Key Vault:
IP address: 10.32.53.55
Certificate ID: Brocade
Certificate label: skmcert
State: Connected
Type: SKM
Secondary Key Vault not configured
Additional Key Vault/Cluster Information:
Key Vault/CA Certificate Validity: Yes
Port for Key Vault Connection: 9000
Time of Day on Key Server: 2010-03-17 17:51:31
Server SDK Version: 4.8.1
Encryption Node (Key Vault Client) Information:
Node KAC Certificate Validity: Yes
Time of Day on the Switch: 2010-03-17 17:22:05
Client SDK Version: 4.8.2.000017
Client Username: brcduser1
Client Usergroup: brocade
Connection Timeout: 10 seconds
Response Timeout: 10 seconds
Connection Idle Timeout: N/A
Key Vault configuration and connectivity checks successful, ready for key
operations.
Authentication Quorum Size: 0
Authentication Cards:
Certificate ID / label : qc.4250420d02048578 /
sumita:gorla:qc.4250420d02048578
Certificate ID / label : qc.4250420d02047881 /
sumita:gorla:qc.4250420d02047881
NODE LIST
Total Number of defined nodes: 2
Group Leader Node Name: 10:00:00:05:1e:53:8a:67
Encryption Group state: CLUSTER_STATE_CONVERGED
Node Name IP address Role
10:00:00:05:1e:53:8a:83 10.32.71.127 MemberNode (current node)
EE Slot: 0
SP state: Online
10:00:00:05:1e:53:8a:67 10.32.71.129 GroupLeader
EE Slot: 0
SP state: Online