View encrypted nodes

03/09/2023 Contributors

You can view information about the appliance nodes in your StorageGRID system that have the Node Encryption setting enabled.

Steps

Select CONFIGURATION > Security > Key management server.

The Key Management Server page appears. The Configuration Details tab shows any key management servers that have been configured.
From the top of the page, select the Encrypted nodes tab.

The Encrypted nodes tab lists the appliance nodes in your StorageGRID system that have the Node Encryption setting enabled.

Review the information in the table for each appliance node.

Column	Description
Node name	The name of the appliance node.
Node type	The type of node: Storage, Admin, or Gateway.
Site	The name of the StorageGRID site where the node is installed.
KMS name	The descriptive name of the KMS used for the node. If no KMS is listed, select the Configuration details tab to add a KMS. Add a key management server (KMS)
Key UID	The unique ID of the encryption key used to encrypt and decrypt data on the appliance node. To view an entire key UID, position your cursor over the cell. A dash (--) indicates the key UID is unknown, possibly because of a connection issue between the appliance node and the KMS.
Status	The status of the connection between the KMS and the appliance node. If the node is connected, the timestamp updates every 30 minutes. It can take several minutes for the connection status to update after the KMS configuration changes. Note: You must refresh your web browser to see the new values.

Column

Description

Node name

The name of the appliance node.

Node type

The type of node: Storage, Admin, or Gateway.

Site

The name of the StorageGRID site where the node is installed.

KMS name

The descriptive name of the KMS used for the node.

If no KMS is listed, select the Configuration details tab to add a KMS.

Add a key management server (KMS)

Key UID

The unique ID of the encryption key used to encrypt and decrypt data on the appliance node. To view an entire key UID, position your cursor over the cell.

A dash (--) indicates the key UID is unknown, possibly because of a connection issue between the appliance node and the KMS.

Status

The status of the connection between the KMS and the appliance node. If the node is connected, the timestamp updates every 30 minutes. It can take several minutes for the connection status to update after the KMS configuration changes.

Note: You must refresh your web browser to see the new values.

If the Status column indicates a KMS issue, address the issue immediately.

During normal KMS operations, the status will be Connected to KMS. If a node is disconnected from the grid, the node connection state is shown (Administratively Down or Unknown).

Other status messages correspond to StorageGRID alerts with the same names:
- KMS configuration failed to load
- KMS connectivity error
- KMS encryption key name not found
- KMS encryption key rotation failed
- KMS key failed to decrypt an appliance volume
- KMS is not configured
Perform the recommended actions for these alerts.

You must address any issues immediately to ensure that your data is fully protected.

View encrypted nodes

Creating your file...