Manualshelf

Nonstop Volume Level Encryption Guide

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
12345678910
Encryption management
The CLIM is managed with a combination of OSM, the CLIMCMD tool, I/O Essentials, and an
integrated Lights Out Management (iLO) interface. For details, see the NonStop Cluster I/O Protocols
(CIP) Configuration and Management Manual and the NonStop CLuster I/O Module (CLIM)
Installation and Configuration Guide.
Encrypted disks and drives are managed with the SCF storage subsystem. For descriptions of disk
and tape attributes and commands to manage them, see the SCF Reference Manual for the Storage
Subsystem.
The ESKM is managed with the ESKM Management Console. For details, see the Enterprise Secure
Key Manager Users Guide.
HP NonStop I/O Essentials
NonStop I/O Essentials is a plug-in to HP Systems Insight Manager (SIM). HP SIM is an infrastructure
management tool for HP systems that runs on the system console. The NonStop I/O Essentials
plug-in provides a graphical user interface alternative to the command line interfaces of the
CLIMCMD tool and SCF. For more information about using NonStop I/O Essentials, see the
NonStop I/O Essentials Installation and Quick Start Guide.
Supported systems and devices
Volume level encryption is supported on these systems:
NonStop Integrity BladeSystems (J-series)
NonStop Integrity NS16000 series servers (H-series)
NonStop Integrity NS2000 series servers (H-series)
Encryption is not available for S-series or other platforms that do not support the Storage CLIM.
Encryption is supported on these devices:
SAS disk drives
Enterprise Storage Servers
LTO-4 and LTO-5 tape drives — encryption may be applied per-drive or per-media
For disks, encryption is performed by the CLIM using keys generated by the key manager. Encryption
is compatible with the Write Cache Enable feature.
For tapes, encryption is performed by the LTO-4 or LTO-5 tape drive. Storage CLIMs with encryption
support connections to Secure VTS (Virtual Tape Server) tapes, whose encryption is performed by
VTS.
Volume level encryption is not compatible with the NetApp DataFort product.
System requirements and planning
This hardware is required to support encryption:
Any NonStop NS-series or NonStop BladeSystem with Storage CLIMs and an NSVLE encryption
license
Storage CLIM
Key manager (ESKM)
NonStop disks to be encrypted are not required to be mirrored, but mirroring is strongly advised,
for fault tolerance.
The CLIM is an HP ProLiant class server that can connect to HP Integrity NonStop BladeSystem or
NS-series system to support connections to storage devices or to the network. The Storage CLIM
provides fibre channel and SCSI attached storage (SAS) connectivity to storage devices. It supports
10 Overview