No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Advanced O&M Command Reference

OceanStor 18000 V3 Series V300R006

This document is applicable to OceanStor 18500 V3 and 18800 V3. Based on the CLI, this document describes how to use various commands classified by functions and how to set the CLI and manage the storage system through these commands. The document that you browse online matches the latest C version of the product. Click Download to download documents of other C versions.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
import kms key

import kms key

Function

The import kms key command is used to import the key file of the internal key management service.

Format

import kms key ip=? user=? password=? path=? [ protocol=? ] [ port=? ] [ force=? ]

Parameters

Parameter

Description

Value

ip=?

IP address of the FTP or SFTP server.

-

user=?

User name for logging in to the FTP server or SFTP server.

The value consists of 1 to 64 characters without colons (:).

password=?

Password for logging in to the FTP server or SFTP server.

The value consists of 1 to 64 characters.

path=?

Name and path of the key file to be imported.

The file name extension of the key file must be .dat. The file name must be supported by the FTP and SFTP server.

protocol=?

Transfer protocol type.

The value can be "FTP" or "SFTP". The default value is "SFTP".

To ensure the security of data transfer, you are advised to use SFTP.

port=?

Port number of the FTP or SFTP server.

The value is an integer ranging from 1 to 65535.

  • If protocol=FTP, the default value is "21".
  • If protocol=SFTP, the default value is "22".

force=?

Forcible import key file.

The value is "no" or "yes", where:

  • "no": indicates that forcible import will not be performed.
  • "yes": indicates that forcible import will be performed.
NOTE:

Forcible import will ignore the file non-severity check error, for example, the file is not up-to-date, overwrite the system original keys directly with the data in the key file.

Views

Developer view

Usage Guidelines

  • This command can import the key file of the internal key management service only from an FTP server or SFTP server connecting to the storage system.
NOTE:

Prerequisites for using this command:

  • The FTP server or SFTP server is accessible to the storage system.
  • The FTP service or SFTP service has been started on the server.
  • If the storage system serves as a server in the file transfer with external systems, it supports the SFTP service only. If the storage system serves as a client, it supports both the FTP and SFTP services.

Example

Import a key file of the internal key management service. The key file name is "InnerKey.dat", the IP address of the FTP server for storing the key file is "10.10.10.1", the user name for accessing the FTP server is "admin", and the user's password is "123456".

developer:/>import kms key ip=10.10.10.1 user=admin password=****** path=InnerKey.dat protocol=FTP 
WARNING: You are about to import a key file of the internal key management service, which will overwrite the original key data. If the operation is inappropriate, it may cause the internal key management service to lose some key. 
Suggestion:  
1. Confirm that the key file to be imported is up-to-date, and back up the key of the internal key management service of the current system before the import. 
2. During the key import, creating, updating, and deleting the disk domain of self-encrypting disks are all forbidden. 
Have you read warning message carefully?(y/n)y 

Are you sure you really want to perform the operation?(y/n)y 
Password:************** 
Command executed successfully.

System Response

None

Translation
Download
Updated: 2019-07-12

Document ID: EDOC1000138389

Views: 503010

Downloads: 85

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next