Manualshelf

Nonstop Volume Level Encryption Guide

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
51525354555657585960
RecoveryFailure
Key manager failure
CLIM is unable to communicate with the specific key manager. If other key
managers in the cluster are still available, volume level encryption will
continue to work.
The SCF STATUS KEYMANAGER command will report the failed key
manager.
OSM will display an alarm for the failed key manager; however, OSM polls
the key managers periodically and failure will not be detected immediately.
Fix the failed Key Manager
CLIM LAN failure
CLIM will not be able to communicate with any key managers.
Encrypted volumes that are in the STARTED state will continue to work.
New encryption operations will not work: ALTER DISK, NEWENCRYPTKEY
or INIT DISK, NEWENCRYPTKEY.
START command will not work
Fix the enterprise LAN problem.
Same as CLIM eth1 LAN failure.Key manager cluster failure
The operation terminates abnormally. The CLIM automatically reboots, but the
disk path ChangeStatus is still shown as “In progress on other CLIM”. To recover,
Key rotation failure
you must initialize the disk. This will destroy all the data on the disk but it is
backed up on its mirror.
Fallback
Volume level encryption software is fully backward-compatible with non-encrypted disks and tapes.
You must decrypt any encrypted disks and tapes before falling back to a previous release version.
Adding CLIMs
If CLIMs that will be used for encryption are added to the system, you must follow the procedures
to add the NSSuser, register the CLIMs, and delete the user.
Fallback 57