DCFM Professional Plus User Manual (53-1001774-01, June 2010)

548 DCFM Professional Plus User Manual

53-1001774-01

Link Keys tab

Connections between a switch and an NetApp LKM key vault require a shared link key. Link keys

are used only with LKM key vaults. They are used to protect data encryption keys in transit to and

from the key vault. There is a separate link key for each key vault for each switch. The link keys are

configured for a switch but are stored in the encryption engines, and all the encryption engines in a

group share the same link keys. The Link Keys tab displays a table that shows link key status for

each switch in an encryption group.

You must create link keys under the following circumstances:

• When a new encryption group is created.

• When a new switch is added to an encryption group.

• When a new key vault is added to an encryption group.

• After all encryption engines in a switch have been zeroized.

• When all of the encryption blades have been removed from a director and one or more new

encryption blades have been added.

Refer to “Establishing the trusted link” on page 468 for information on how the Accept and

Establish buttons are used in establishing the trusted link between a switch and LKM.