Availability

Ensure availability of encryption key servers by adhering to the recommended configurations.

Key server
  • Configure key servers to automatically power on when power is available and to automatically initiate the key server application.
  • Configure the key server application to automatically start.
  • Configure redundant network fabrics between key servers and encrypting storage. Most storage products support two or more network connections. To improve robustness, provide independent network paths to independent key servers.
Storage system
  • Configure the storage system with the dual Hardware Management Console (HMC) option to provide redundant access to your network. Dual HMCs can be provided by cross-coupling the HMCs on two storage systems or by providing an extra stand-alone HMC for a single storage system. The inability of a storage system to communicate with a key server when it powers on prevents access to encrypted storage on the system.
  • Define multiple security administrators and multiple storage administrators on the storage system so that the loss of access to one administrator does not prevent the ability to use a recovery key for recovery purposes. The recovery key must be shared or accessible to all of the security administrators.