Below given procedure is to configure an HPE SimpliVity 380 Gen10 server to support data at rest
encryption by enabling the encryption feature on the HPE Smart Array controller in "Local Mode".
Please note that this feature doesn't require separate license. But if you wish to need professional support in case of any issue, license entitlement is recommended.
⚡WARNING: Smart Array based encryption can only be enabled before the system is deployed. Do not attempt this procedure on a deployed system containing data.
Login to the iLO of Simlivity hardware. I am having "HPE SimpliVity 380 Gen10". Hardware is having OmniStack 3.7.7.
Click on "Power Switch" and select "cold boot". Server will be rebooted.
Select "F10" for "Intelligent provisioning".
Select "Smart Storage Administrator".
Select Smart Array Controller--> HPE Smart Array P816.
Select "Configure".
Now select "Physical Drives" and "Advanced controller settings".
Select "Encryption Manager" then click on "Perform initial setup".
Select "Setup Type" as "Full setup" and enter password by yourself. Also make note of this password as it may need during decryption.
Select "Key Management Mode" as "Local Key Management Mode" and enter a key made by yourself and click "OK". Also make note of this key as it may need during decryption.
Click "Yes" to proceed further.
Accept terms and conditions.
Now select "Logical devices".
Now select "Convert Plaintext Data to Encrypted Data".
I have selected "No Discard existing data" as this is first time deployment. And don't forget to select all logical drives. Click "OK"
Click "Yes".
Click "Finish". Now drive encryption will start post reboot, hence reboot the server.
No comments:
Post a Comment