Dell EMC Server Administrator Storage Management 9.1

Creating An Encryption Key And Enabling LKM

To create an encryption key on the selected controller:
  1. Select the Enable Local Key Management (LKM) option.

  2. Type Encryption Key Identifier.

    An Encryption Key Identifier can contain numerals, alphabets both lower and upper case are allowed, non-alphanumeric characters, or a combination of any of these.
    NOTE: For the Encryption Key Identifier and Passphrase guidelines, click the Information
icon icon on the page.
  3. Type a Passphrase.

    A Passphrase must contain at least one numeral, alphabets both lower and upper case are allowed, and one non-alphanumeric character (except space).
    NOTE: Server Administrator Storage Management provides a suggested passphrase below the Passphrase text box.
  4. If you want to save the Encryption Key credentials in a file on the system where Distributed Web Server is running, select the Escrow check box.

    The Path field is displayed. Provide the path where you want to save the file. The path should contain a filename with an .xml extension. The saved file contains the information: SAS address, Encryption Key Identifier, Passphrase, and modified date. You can use this file for future reference.
    CAUTION: It is important to understand that if you lose the Passphrase, you cannot recover it. If you move the physical disks associated with the lost Passphrase to another controller or if the controller fails or is replaced, you cannot access data from that disk.
    NOTE: If Encryption Key Identifier or Passphrase contain special characters such as & , " , <, and >, in the file, they are written as &amp; , &quot;, &lt; and &gt; respectively.
    NOTE: If the system crashes while saving the file, the backup file is saved in the specified location.
  5. Select the check-box indicating that you understand the implications of using a passphrase and click Apply Changes.

    In the controller Information/Configuration page, the Encryption Key Present is set to Yes and the Encryption mode is set to LKM.