52 | Dell EMC VxRail Appliance Operations Guide
© 2017 Dell Inc. or its subsidiaries.
The figure below is an example of this dialog.
Figure 26. Enabling encryption
Two options are available when enabling or disabling encryption:
Erase disks before use. Check this box to perform a soft erase of the disk before writing
new data. This option can lengthen the time it takes to complete the encryption process.
Allow reduced redundancy. vSAN relaxes the data protection rules and allows a reduced
number of replicas during the DFC process. VxRail clusters with three nodes may require
Reduced Redundancy, since there may not be enough headroom to move data during the
conversion process.
When encryption is turned on, the VxRail cluster performs a disk format change (DFC). The
DFC creates a new partition on the disk that holds the metadata information and prepares the
disk to encrypt all write operations. The automated DFC process for a cluster is performed one
disk group at a time. When encryption is enabled, vSAN detects that a disk has never been
encrypted and initiates the DFC operation. Existing data is moved out of the disk group and then
written back to the encrypted drive. To complete this operation there must be spare capacity in
the cluster.
To Next Page
Loading...
