Configure D@RE
Data at Rest Encryption (D@RE) protects data confidentiality by adding back-end encryption to the entire storage system. Unisphere supports the entry and validation of D@RE external key security certificates.
Prerequisites
This feature is not supported by storage systems running HYPERMAX OS 5977.
Data encryption is enabled on the storage system.
D@RE configuration management setting is set to enabled (see Set general preferences).
About this task
You can enter and validate D@RE external key security certificates using Unisphere.
Thus, you no longer must share sensitive secure information (such as SSL certificates) with Dell personnel in order to deploy or manage D@RE external key manager (addresses customer internal security policies regarding allowing sensitive information to be shared outside the company).
To configure D@RE:
Steps
-
Click
next to the
System Data Encryption parameter.
The first page of the D@RE configuration wizard is displayed. -
Do one of the following:
- Set up DARE
- Click D@RE Setup and click NEXT.
- Enter value for Application Name.
- Click Show Password to show the password fields, and type a password into the Password and Confirm Password fields. Click Hide Password to hide the password fields.
- View value (CipherTrust) for Server Maker.
- Choose a Certificate Authority file and a Client Credential file.
- Enter values for IP Address and its associated port.
- Optional: Click
and add additional IP addresses.
- Click NEXT.
- Update DARE certification
- Click D@RE Certificate Update and click NEXT.
- Click Show Password to show the password fields, and type a password into the Password and Confirm Password fields. Click Hide Password to hide the password fields.
- Choose a Certificate Authority file and a Client Credential file.
- Click NEXT.
- Set up DARE