Brocade Fabric OS Command Reference Manual Supporting Fabric OS v7.0.0 (April 2011)

ManualsBrandsHP ManualsStorageHP StorageWorks 4/16 SAN Switch

201

202

203

204

205

206

207

208

209

210

172 Fabric OS Command Reference

53-1001764-01

cryptoCfg

--show -groupmember

Displays detailed information for all encryption group members or for a single

member. This command is valid on all member nodes and on the group leader.

The following required operands are mutually exclusive:

-all

Displays information on all nodes in the existing encryption group.

node_WWN

Displays information on a single specified node. The node is identified by its node

WWN.

--show -egstatus

Displays encryption group configuration or status information for all nodes in the

encryption group. The following operands are exclusive:

-cfg

Displays encryption group configuration information.

-stat

Displays encryption group status information.

--sync -encgroup

Manually synchronizes the encryption group database belonging to the group

leader node with the databases of all member nodes that are out of sync. If this

command is invoked when the encryption group databases are in sync, the

command is ignored.

Note: When the encryption group is out of sync and the group leader reboots, the

newly selected group leader pushes its database information to all other

members. The new group leader's database information may be different from

what was set up before the group leader was rebooted.

--sync -securitydb

Distributes the security database from the group leader node to all member

nodes. This operation can resolve problems with master key propagation. The

synchronization occurs every time this command is executed regardless of

whether or not the security database was in sync across all nodes in the

encryption group. This command is valid only on the group leader.

EXAMPLES To create an encryption group "brocade":

SecurityAdmin:switch> cryptocfg --create -encgroup brocade

Encryption group create status: Operation Succeeded.

To create an encryption group "brocade" on a node that has stale configurations:

SecurityAdmin:switch> cryptocfg --create -encgroup brocade

Warning: There are stale (Container|HA|Tape) cryptodb configurations.

Please confirm to delete them.

ARE YOU SURE (yes, y, no, n): [no] y

Warning: These are the list of crypto configuration \

to be cleaned up:

Inside /etc/fabos/mace (crypto_dek.db.0, crypto_dev.db.0, \

crypto_hac.db.0, crypto_pool.db.0, crypto_wwn.db.0).

ARE YOU SURE (yes, y, no, n): [yes]y

Encryption group create status: Operation Succeeded.

To delete the encryption group "brocade":

SecurityAdmin:switch> cryptocfg --delete -encgroup brocade

Encryption group create status: Operation Succeeded.