Encryption CLI Commands

Data-at-Rest Encryption uses Self Encrypting Drive (SED) technology to secure all data stored on DXi systems, including:

  • File data and metadata
  • Configuration files
  • DXi and operating system software

When Data-at-Rest Encryption is enabled, all hard drives in the DXi are paired with the disk controllers through encryption keys. After this pairing, accessing data on the drives requires the same encryption keys and controllers that were used to write the data. This access method ensures that a drive physically removed from the DXi cannot be read using another system or device.

System Requirements

To enable Data-at-Rest Encryption, you must ensure that the following requirements are met.

ClosedHardware Requirements
  • All drive controllers and hard drives (active and hot spares) in the DXi support SED technology.
  • All physical drives are Self Encrypting.
ClosedSoftware Requirement
  • A DXi hard drive security license is intalled.

Caution: After you enable Data-at-Rest Encryption, you cannot disable it or turn it off. Make sure to back up your passphrase and security files, as they may be required for future capacity expansion or rare hardware failure scenarios.

See the following topic for Encryption CLI commands: Manage Encryption

See Also IconSee Also

COMPANY

Quantum.com

Events & Webinars

News

Blog

Contact Us

SUPPORT

Quantum Service and Support

Documentation Portal

Software, Firmware, and Driver Downloads

StorageCare Learning

Search Our Knowledgebase

Customer Self Service Portal

Documentation Feedback

JOIN US

© 2017 Quantum Corporation. All rights reserved.  |  6-68449-04  | Initial publication date: Monday, August 07, 2017 | Last updated on Thursday, June 21, 2018.