l
Encryption Mode: type of encryption in use; for example, Controller-Based
Encryption.
l
Encryption Status: based on the actual encryption status:
n
Unsupported, encryption of the system space on the SPs is disabled.
n
Not licensed, the Data at Rest Encryption license has not been installed on the
system.
n
Encrypted, encryption is complete.
n
Not encrypting, CBE is disabled.
n
Scrubbing, the process of writing random data to unused space on drives or
zeroing unbound drives to erase residual data from previous use.
For SAS Flash 2 drives, unmap is used to scrub the drives rather than zeroing.
For more information about Data at Rest Encryption and the scrubbing
process, refer to the
EMC Unity: Data at Rest Encryption
white paper located at
EMC Online Support (https://support.emc.com).
n
Encrypting, encryption is in progress.
To view the status of the D@RE feature in Unisphere, select Settings >
Management > Encryption. The status of the encryption appears under Manage
Encryption > Encryption.
As an alternative, use the CLI command uemcli -u <username> -p
<password> /prot/encrypt show -detail to view the feature status. You can
also use this CLI command to view the status of the keystore and to determine
whether any user operations are required. See the
Unisphere Command Line Interface
User Guide
for detailed information about these CLI commands.
Backup keystore file
Changes to the configuration of the system that result in changes to the keystore
generate information alerts which persist and recommend key backups be created. A
new alert will be generated only after the keystore has been retrieved from the system
for backup.
EMC strongly recommends that you backup the generated keystore file to another
location which is external to the system where the keystore can be kept safe and
secret. In the event that the keystore files on the system become corrupted and in an
inaccessible state, the system will enter service mode. In this case, the backup
keystore file and a service engagement are required for resolution.
A user role of administrator or storage administrator is required to backup the
keystore file. To backup the keystore file to a location that is external to the system
where the keystore can be kept safe and secret, select Settings > Management >
Encryption and, under Manage Encryption > Keystore, select Backup Keystore File.
The dialog box that appears directs you through the steps to backup the generated
keystore file.
Data Security Settings
Backup keystore file 53
To Next Page
Loading...
Need help?
General
