Chapter 6
Cisco SME Key Management
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
Click Rekey. A confirmation dialog box is displayed asking if the rekey operation is to be performed.
Step 3
Click OK to rekey the selected volume groups.
Auto Key Replication of Keys Across Data Centers
The auto replication of media keys enables the moving of tapes from one data center to another. The
replication of keys allows the same tape media to be accessed by more than one Cisco SME cluster. In
most cases, the SME clusters are located in different locations, such as a primary data center and a
disaster recovery site. Cisco SME allows you to automatically replicate the media keys from one Cisco
SME cluster to one or more clusters. The automated process of replicating keys eliminates the need for
the manual key export and import procedures. The media key auto-replication is configured on per tape
volume group basis.
One KMC manages all the data centers and the replicated keys are stored on the KMC.
This section describes the following topics:
•
•
Translating Media Keys
Each cluster is associated with a translation context. The translation context contains the public key for
the key pair generated by the crypto-module of one of the clusters.
OL-18091-01, Cisco MDS NX-OS Release 4.x
Translating Media Keys, page 6-15
Auto Replicating Keys in Fabric Manager Web Client, page 6-16
Cisco MDS 9000 Family Storage Media Encryption Configuration Guide
Key Management Operations
6-15