Skip to main content
SANtricity 11.9

Switch from external to internal key management

Contributors netapp-jolieg

You can change the management method for Drive Security from an external key server to the internal method used by the storage array. The security key previously defined for external key management is then used for internal key management.

About this task

In this task, you disable external key management and download a new backup copy to your local host. The existing key is still used for Drive Security, but will be managed internally in the storage array.

Steps
  1. Select Settings  System.

  2. Under Security key management, select Disable External Key Management.

    The Disable External Key Management dialog box opens.

  3. In Define a pass phrase/Re-enter pass phrase, enter and confirm a pass phrase for the backup of the key. The value can have between 8 and 32 characters, and must include each of the following:

    • An uppercase letter (one or more). Keep in mind that the pass phrase is case sensitive.

    • A number (one or more).

    • A non-alphanumeric character, such as !, *, @ (one or more).

    Caution

    Be sure to record your entries for later use. If you need to move a secure-enabled drive from the storage array, you must know the identifier and pass phrase to unlock drive data.

  4. Click Disable.

    The backup key is downloaded to your local host.

  5. Record your key identifier, pass phrase, and the location of the downloaded key file, and then click Close.

Results

Drive Security is now managed internally through the storage array.

After you finish

You should validate the security key to make sure the key file is not corrupted.