Brocade Fabric OS Encryption Administrator's Guide Supporting Fabric OS v6.2.0 (53-1001201-04, May 2009)
42 Encryption Administrator’s Guide
53-1001201-04
Configure Encryption for LKM key vaults
2
Configure Encryption for LKM key vaults
This section describes how to configure encryption on the Netapp Lifetime Key Manager (LKM).
Use the switch CLI to establish shared secrets between the LKM key vault and each switch in the
encryption group (NetApp LKM key vaults only). To create the automatic trusted links between the
switch and key vault, see the Fabric OS Encryption Administrator’s Guide.”
Launching the DataFort Management application on Windows
platforms
Use information in this section to install the DataFort Management console and add one or more
LKM key vaults.
1. Download and extract the Datafort Management Console installation software from the
following location:
\\shadowfax\Groups\MACE\LKM_Appliance\DMC\head_dmc_m12.zip
2. After installing the DataFort Management software, locate the application on the Windows
platform by selecting Start > Programs > Decru > Decru Management Console.
The factory default user ID and password are admin and password.
Adding LKM key vaults on the DataFort Management Console
1. Select Appliance > Add from the DataFort Management Console.
The Add dialog box displays.
2. Enter one or more host name(s) or IP address(es) in the text box, and click OK.
You can add multiple key vaults by entering the start and end IP addresses in the text boxes
provided.
You are returned to the Datafort Management Console main window.
Exchanging certificates between the switch and DataFort Management
Console
1. Select Utilities > Command Line from the DataFort Management Console.
The Command Line dialog box displays.
2. Enter the following command in the Command text box:
lkm server add --type third-party --key-sharing-group “/” <switch_IP_address>
3. Click Execute.