Brocade Fabric OS Command Reference Manual Supporting Fabric OS v7.0.0 (April 2011)

Fabric OS Command Reference 169
53-1001764-01
cryptoCfg
22
value
Specifies the key vault type. The default is set to no value. This operand is
required. Valid values for -keyvault include the following parameters:
LKM
Specifies the NetApp LKM appliance (trusted key vault).
RKM
Specifies the RSA Key Manager (RKM) (opaque key repository).
SKM
Specifies one of the following: the HP Secure Key Manager (SKM) or the HP
Enterprise Secure Key Manager (ESKM). Both are opaque key repositories.
TEMS
Specifies the Thales nCipher key management appliance (opaque key
repository, a.k.a NCKA).
TKLM
Specified the Tivoli Key Lifetime Manager (TKLM) key repository
--set -failbackmode
Sets the failback mode parameter. This parameter is set on the group leader. Valid
values for failback mode include the following parameters:
auto
Enables automatic failback. In this mode, failback occurs automatically within an
HA cluster when an encryption switch or blade that failed earlier has been
restored or replaced. Automatic failback mode is enabled by default.
manual
Enables manual failback. In this mode, failback must be initiated manually after an
encryption switch or blade that failed earlier has been restored or replaced.
--set -hbmisses
Sets the number of heartbeat misses allowed in a node that is part of an
encryption group before the node is declared unreachable. This value is set in
conjunction with the time-out value. It must be configured at the group leader node
and is distributed to all member nodes in the encryption group. The following
operand is required:
value
Specifies the number of heartbeat misses. The default value is 3. The range is 1
to 15 in integer increments only.
--set -hbtimeout
Sets the time-out value for the heartbeat. This parameter must be configured at
the group leader node and is distributed to all member nodes in the encryption
group. The following operand is required:
value
Specifies the heartbeat time-out in seconds. The default value is 2 seconds. Valid
values are integers in the range between 1 and 30 seconds.
--set -quorumsize
Sets the quorum size used to authenticate functions that require a quorum of
authentication cards. The default value is zero. You can set the quorum size only if
the current value is zero. Note that this value is different from the recovery set size
that specifies the number of recovery shares used to perform Master Key
recovery. When quorum authentication is enabled (Quorum Size is > 0), this
operation requires authentication of a quorum of authentication cards.
value
Specifies the quorum size. Valid values are 0 (quorum authentication is disabled)
and 1 through 5 (quorum authentication is enabled). This operand is required.