DCFM Enterprise User Manual (53-1001775-01, June 2010)
DCFM Enterprise User Manual 585
53-1001775-01
Link Keys tab
20
Link Keys tab
Connections between a switch and an NetApp LKM key vault require a shared link key. Link keys
are used only with LKM key vaults. They are used to protect data encryption keys in transit to and
from the key vault. There is a separate link key for each key vault for each switch. The link keys are
configured for a switch but are stored in the encryption engines, and all the encryption engines in a
group share the same link keys. The Link Keys tab displays a table that shows link key status for
each switch in an encryption group.
You must create link keys under the following circumstances:
• When a new encryption group is created.
• When a new switch is added to an encryption group.
• When a new key vault is added to an encryption group.
• After all encryption engines in a switch have been zeroized.
• When all of the encryption blades have been removed from a director and one or more new
encryption blades have been added.
Refer to “Establishing the trusted link” on page 508 for information on how the Accept and
Establish buttons are used in establishing the trusted link between a switch and LKM.
Tape Pools tab
Tape pools are managed from the Tape Pools tab.
Figure 263 displays the tape pools tab.
FIGURE 263 Encryption Group Properties - Tape Pools tab
• If you want to remove a tape pool, select one or more tape pools in the list and click Remove.
• To modify the tape pool, remove the entry and add a new tape pool. See “Adding tape pools” on
page 586 for more information.