Fabric OS Encryption Administrator's Guide v6.4.0 (53-1001864-01, June 2010)
40 Fabric OS Encryption Administrator’s Guide
53-1001864-01
Creating a new encryption group
2
FIGURE 17 Configuration Status dialog box
The Management application sends API commands to verify the switch configuration. The CLI
commands are detailed in the Fabric OS Encryption Administrator’s Guide, “Key vault
configuration.”
• Initialize the switch
If the switch is not already in the initiated state, the Management application performs the
cryptocfg --initnode command.
• Create encryption group on the switch
The Management application creates a new group using the
cryptocfg --create -encgroup
command, and sets the key vault type using the
cryptocfg --set -keyvault command.
• Register key vault(s)
The Management application registers the key vault using the cryptocfg --reg keyvault
command.
• Enable the encryption engines
The Management application initializes an encryption switch using the
cryptocfg --initEE
[<slotnumber>]
and cryptocfg --regEE [<slotnumber>] commands.
• Create a new master key
The Management application checks for a new master key. New master keys are generated
from the Encryption Group Properties dialog box, Security tab. See “Creating a new master key”
on page 70 for more information.