Skip to main content
SANtricity commands

Disable external security key management

Contributors netapp-driley

The disable storageArray externalKeyManagement file command disables external security key management for a storage array that has Full Disk Encryption drives.

Supported Arrays

This command applies to an individual E4000, E2800, E5700, EF600 or EF300 storage array. It does not operate on E2700 or E5600 storage arrays.

Roles

To execute this command on an E4000, E2800, E5700, EF600, or EF300 storage array, you must have the Security Admin role.

Syntax

disable storageArray externalKeyManagement
file="fileName"
passPhrase="passPhraseString"
saveFile=(TRUE | FALSE)

Context

Note

This command enables internal key management as the alternate form of Drive Security.

Note

This command applies only to external key management.

Parameters

Parameter Description

file

The file path and the file name where the internal security key file is stored. For example:

file="C:\Program Files\CLI\sup\drivesecurity.slk"
Important

The file name must have an extension of .slk.

passPhrase

A character string that encrypts the security key so that you can store the security key in an external file.

saveFile

Verifies and saves the security key to a file. Set to FALSE to not save and verify the security key to a file. The default value is TRUE.

Notes

Your pass phrase must meet these criteria:

  • Must be between eight and 32 characters long.

  • No whitespace.

  • Must contain at least one uppercase letter.

  • Must contain at least one lowercase letter.

  • Must contain at least one number.

  • Must contain at least one non-alphanumeric character, for example, < > @ +.

Note

If your pass phrase does not meet these criteria, you will receive an error message.

Minimum firmware level

8.40

8.70 adds the saveFile parameter.