The import storageArray securityKey file command unlocks one or more full disk encryption (FDE) drives that you have moved from one storage array to another storage array.
If external key management is enabled, then this command applies only to the E2800, E5700, or EF600 arrays. If internal key management is enabled, then the command applies to any individual storage array, as long as all SMcli packages are installed.
To execute this command on an E2800, E5700, EF600, or EF300 storage array, you must have the Security Admin role.
Only the drives with the matching security key are unlocked. After they are unlocked, the security key for the new storage array is applied.
import storageArray securityKey file="fileName" passPhrase="passPhraseString"
| Parameter | Description |
|---|---|
| file | The file path and the file name that has the original security key of the imported FDE drives. For example: file="C:\Program Files\CLI\sup\drivesecurity.slk" Important: The file name must have an extension of .slk.
|
| passPhrase | The character string that provides authentication for the security key. |
The controller firmware creates a lock that restricts access to the FDE drives. FDE drives have a state called Security Capable. When you create a security key, the state is set to Security Enabled, which restricts access to all FDE drives that exist within the storage array.
Your pass phrase must meet these criteria:
7.40
8.40 adds the ability to import an external storage array security key