Using the REST API to perform encryption operations

Encryption License Key User Guide

Version
9.8.7
Audience
anonymous
Part Number
MK-98RD9017-17

For the VSP E series storage systems, Encryption License Key operations can be performed by using Device Manager - Storage Navigator or the REST API.

If your storage system is configured with an SVP, you can use the Device Manager - Storage Navigator (HDvM - SN) software to perform Encryption License Key operations. If your storage system does not have an SVP, you can use the REST API and embedded Command Control Interface (CCI). You must have Security Administrator (View & Modify) access privileges to perform Encryption License Key operations.

The following table lists the Encryption License Key operations and indicates the user interface support for each operation. For details about using the REST API, see the REST API Reference Guide. For details about using CCI, see the Command Control Interface Command Reference.

Operations HDvM - SN REST API
Viewing and editing the encryption environmental settings Supported Supported*
Viewing and acquiring encryption keys Supported Supported
Viewing and acquiring the number of encryption keys Supported Supported
Editing the password policy Supported Not supported
Generating encryption keys Supported Supported*
Backing up encryption keys to a file on the Device Manager - Storage Navigator computer Supported Supported*
Backing up encryption keys to a key management server Supported Not supported
Restoring encryption keys from a file on the Device Manager - Storage Navigator computer Supported Supported*
Restoring encryption keys from the key management server Supported Not supported
Forcibly restoring encryption keys from a file on the Device Manager - Storage Navigator computer Supported Supported*
Forcibly restoring encryption keys from the key management server Supported Not supported
Backing up encryption keys regularly Supported Not supported
Deleting and generating unused encryption keys Supported Supported*
Listing data backed up in a key management server Supported Not supported
Deleting backed up data in the key management server Supported Not supported
Updating certificate encryption keys Supported Not supported
Updating key encryption keys Supported Not supported
Rekeying key encryption keys Supported Not supported
Enabling and disabling encryption on specific parity groups Supported Not supported
Enabling encryption when creating parity groups Supported Supported
* When the encryption environment for the storage system is configured to be linked with a key management server, these operations cannot be performed by using the REST API.