Workflow for restoring data encryption license keys

Restore a data encryption license key from the primary or secondary backup copy when all the LDEVs belonging to an encrypted parity group are blocked or if an existing data encryption license key becomes unavailable or you cannot use it. For example, a system failure occurred.

The system automatically restores data encryption license keys from the primary backup. You must have Security Administrator (View & Modify) role to restore the data encryption license key from a secondary backup data encryption license key.

 When you restore the data encryption license key, always restore the latest key. If a data encryption license key is updated after a secondary backup is performed, and the restored key is not the latest key, drives and disk boards will be blocked and will not be able to read data.

Use the following process to restore a data encryption license key:

1. Block the LDEVs associated to the encrypted parity group by blocking the LDEV using a file on the HDvM - SN computer.

For more information about blocking LDEVs using a file, see the Hitachi Command Suite User Guide.

2. Restore an data encryption license key from a primary or secondary backup copy. Do one of the following:

• Restore the data encryption license keys from a file backed up on the HDvM - SN computer.

For more information about \ from a file, see Restoring keys from a file.

• Restoring data encryption license keys from the key management server.

For more information about restoring keys from the key management server, see Restoring keys from a key management server.

© 2015 Hitachi, Ltd. All rights reserved.