Table of ContentsView in Frames

Removing key management servers

If you no longer want to use a key management server to store authentication keys used by self-encrypting disks in the storage system, you can remove the key management server link to the storage system by using the key_manager remove command.

Before you begin

You must know the IP address for each key management server that you want to remove.

About this task

Storage Encryption requires at least one key management server linked to the storage system to operate. If you want to replace a single key management server with another one, you must first add the new one before removing the old one.

Steps

  1. Access the nodeshell by entering the following command: system node run -node node_name
  2. To remove key management servers, enter the following command: key_manager remove -key_server key_server_ip_address

    -key_server key_server_ip_address specifies the IP address of the key management server you want to remove.

  3. Exit the nodeshell and return to the clustershell by entering the following command: exit

Example

The following command removes the link between the storage system and the key management server with the IP address 172.18.99.175:

storage-system> key_manager remove -key_server 172.18.99.175
Key server 172.18.99.175 will be unregistered from service.
Unregistration successful.