Skip to main content
SANtricity commands

Re-create external security key

Contributors netapp-driley

The recreate storageArray securityKey command regenerates a storage array security key for use with the external security key management feature.

Supported Arrays

This command applies to any individual storage array, including the E2700, E5600, E2800, E5700, EF600 and EF300 arrays, as long as all SMcli packages are installed.

Roles

To execute this command on an E2800, E5700, EF600, or EF300 storage array, you must have the Security Admin role.

Context

Note

This command applies only to external key management.

Syntax

recreate storageArray securityKey
passPhrase="passPhraseString"
file="fileName"
[deleteOldKey=(TRUE | FALSE)]

Parameters

Parameter Description

passPhrase

A character string that encrypts the security key so that you can store the security key in an external file. Enclose the pass phrase in double quotation marks (" ").

file

The file path and the file name that has the security key. For example:

file="C:\Program Files\CLI\sup\drivesecurity.slk"
Note

The file name must have an extension of .slk.

deleteOldKey

Set this parameter to TRUE to delete the old security key from the external key management server after the new security key is created. The default is FALSE.

Notes

Your pass phrase must meet these criteria:

  • The pass phrase must be between eight and 32 characters long.

  • The pass phrase must contain at least one uppercase letter.

  • The pass phrase must contain at least one lowercase letter.

  • The pass phrase must contain at least one number.

  • The pass phrase must contain at least one non-alphanumeric character, for example, < > @ +.

Note

If your pass phrase does not meet these criteria, you will receive an error message.

Minimum firmware level

7.70

11.73 adds the deleteOldKey parameter.