Chapter 7 Encryption Key Management
Configuring Encryption Key Management on the Library
Scalar i500 User’s Guide 173
Step 1: Installing the EKM License Key on the Library 7
If your EKM license key is not already installed on the library, install it
now.
Step 2: Preparing Partitions for Library Managed Encryption
7
For each partition on which you want to enable library managed
encryption, do the following:
1 Make sure the partition contains encryption-supported and
encryption-capable tape drives and media. Note the following:
• Q-EKM partitions must contain only IBM LTO-4, IBM LTO-5,
and/or IBM LTO-6 tape drives.
• SKM partitions must contain only HP LTO-4, HP LTO-5,
HP LTO-6, and IBM LTO-7 tape drives. SKM media must have
valid barcode labels affixed. SKM does not support the use of
unlabeled media.
• KMIP partitions must contain only IBM/HP LTO-4 and/or
IBM/HP LTO-5 tape drives.
Note: Scalar Key Manager is very sensitive to network instability
due to the large amount of operations occurring in rapid
succession. If you get an error stating that an SKM operation
failed, check network functionality and try the operation
again.
Make sure ports 80, 6000, and 6001 on the SKM servers are
opened up in a bi-directional mode on all firewalls in your
network. If they are not, the library will not be able to
communicate with the SKM servers.
Note: You must be running Q-EKM version 2.0 (or higher)
to support IBM LTO-5 or LTO-6 tape drives.
To Next Page
Loading...
Need help?
General