- Notes, cautions, and warnings
- Introduction
- About your MD Series storage array
- Physical disks, virtual disks, and disk groups
- Disk pools
- Thin virtual disks
- RAID levels
- Segment size
- Virtual disk operations
- Disk group operations
- RAID background operations priority
- Virtual disk migration and disk roaming
- Advanced features
- Multi-path software
- Load balancing
- Monitoring system performance
- Interpreting performance monitor data
- Viewing real-time graphical performance monitor data
- Customizing the performance monitor dashboard
- Specifying performance metrics
- Viewing real-time textual performance monitor
- Saving real-time textual performance data
- Starting and stopping background performance monitor
- Viewing information about the current background performance monitor session
- Viewing current background performance monitor data
- Saving the current background performance monitor data
- Viewing saved background performance monitor data
- Invalid objects in Performance Monitor
- Discovering and managing your storage array
- Out-of-band management
- In-band management
- Storage arrays
- Setting up your storage array
- Locating storage arrays
- Naming or renaming storage arrays
- Setting a password
- Adding or editing a comment to an existing storage array
- Removing storage arrays
- Enabling premium features
- Displaying failover alert
- Changing the cache settings on the storage array
- Changing expansion enclosure ID numbers
- Changing the enclosure order
- Configuring alert notifications
- Battery settings
- Setting the storage array RAID controller module clocks
- Using iSCSI
- Changing the iSCSI target authentication
- Entering mutual authentication permissions
- Creating CHAP secrets
- Changing the iSCSI target identification
- Changing iSCSI target discovery settings
- Configuring the iSCSI host ports
- Advanced iSCSI host port settings
- Viewing or ending an iSCSI session
- Viewing iSCSI statistics and setting baseline statistics
- Edit, remove, or rename host topology
- Event monitor
- About your host
- Disk groups, standard virtual disks, and thin virtual disks
- Creating disk groups and virtual disks
- Thin virtual disks
- Advantages of thin virtual disks
- Physical vs virtual capacity an a thin virtual disk
- Thin virtual disk requirements and limitations
- Thin virtual disk attributes
- Thin virtual disk states
- Comparison—Types of virtual disks and copy services
- Rollback on thin virtual disks
- Initializing a thin virtual disk
- Changing a thin virtual disk to a standard virtual disk
- Utilizing unmapping for thin virtual disk
- Enabling unmap thin provisioning for thin virtual disk
- Choosing an appropriate physical disk type
- Physical disk security with self encrypting disk
- Configuring hot spare physical disks
- Physical disk security
- Enclosure loss protection
- Drawer loss protection
- Host-to-virtual disk mapping
- Creating host-to-virtual disk mappings
- Modifying and removing host-to-virtual disk mapping
- Changing RAID controller ownership of the virtual disk
- Removing host-to-virtual disk mapping
- Changing the RAID controller module ownership of a disk group
- Changing the RAID level of a disk group
- Removing a host-to-virtual disk mapping using Linux DMMP
- Restricted mappings
- Storage partitioning
- Disk group and virtual disk expansion
- Disk group migration
- Storage array media scan
- Disk pools and disk pool virtual disks
- Difference between disk groups and disk pools
- Disk pool restrictions
- Creating a disk pool manually
- Automatically managing unconfigured capacity in disk pools
- Locating physical disks in a disk pool
- Renaming a disk pool
- Configuring alert notifications for a disk pool
- Adding unassigned physical disks to a disk pool
- Configuring the preservation capacity of a disk pool
- Changing the modification priority of a disk pool
- Changing the RAID controller module ownership of a disk pool
- Checking data consistency
- Deleting disk pool
- Viewing storage array logical components and associated physical components
- Secure disk pools
- Changing capacity on existing thin virtual disks
- Creating thin virtual disk from disk pool
- Using SSD cache
- How SSD cache works
- Benefits of SSD cache
- Choosing SSD cache parameters
- SSD cache restrictions
- Creating an SSD cache
- Viewing physical components associated with an SSD cache
- Locating physical disks in an SSD cache
- Adding physical disks to an SSD cache
- Removing physical disks from an SSD cache
- Suspending or resuming SSD caching
- Changing I/O type in an SSD cache
- Renaming an SSD cache
- Deleting SSD cache
- Using the performance modeling tool
- Premium feature—Snapshot Virtual Disk
- Snapshot images and groups
- Snapshot Virtual Disk read/write properties
- Snapshot groups and consistency groups
- Understanding snapshot repositories
- Creating snapshot images
- Scheduling snapshot images
- Performing snapshot rollbacks
- Creating snapshot group
- Converting a snapshot Virtual Disk to read-write
- Viewing associated physical components of an individual repository virtual disk
- Creating consistency group
- Creating a snapshot virtual disk of a snapshot image
- Snapshot Virtual Disk limitations
- Creating Snapshot Virtual Disk
- Creating a Snapshot Virtual Disk repository
- Changing the settings of a Snapshot Virtual Disk
- Disabling Snapshot Virtual Disk or consistency group Snapshot Virtual Disk
- Re-creating a Snapshot Virtual Disk or consistency group Snapshot Virtual Disk
- Renaming a Snapshot Virtual Disk or consistency group Snapshot Virtual Disk
- Creating consistency group Snapshot Virtual Disk
- Manually creating a consistency group Snapshot Virtual Disk repository
- Disabling Snapshot Virtual Disk or consistency group Snapshot Virtual Disk
- Re-creating a Snapshot Virtual Disk or consistency group Snapshot Virtual Disk
- Changing the modification priority of an overall repository virtual disk
- Changing the media scan setting of an overall repository virtual disk
- Changing the pre-read consistency check setting of an overall repository virtual disk
- Increasing capacity of overall repository
- Decreasing the capacity of the overall repository
- Performing revive operation
- Premium feature—virtual disk copy
- Types of virtual disk copies
- Creating a virtual disk copy for an MSCS shared disk
- Virtual disk read/write permissions
- Virtual disk copy restrictions
- Creating a virtual disk copy
- Preferred RAID controller module ownership
- Failed RAID controller module
- Copy manager
- Copying the virtual disk
- Storage array performance during virtual disk copy
- Setting copy priority
- Stopping a virtual disk copy
- Recopying a virtual disk
- Removing copy pairs
- Device Mapper multipath for Linux
- Configuring Asymmetric Logical Unit Access
- Premium feature—Remote Replication
- About asynchronous Remote Replication
- Remote replicated pairs and replication repositories
- Types of Remote Replication
- Remote Replication requirements and restrictions
- Setting up Remote Replication
- Activating Remote Replication premium features
- Deactivating Remote Replication
- Remote Replication groups
- Replicated pairs
- Management firmware downloads
- Downloading RAID controller and NVSRAM packages
- Downloading both RAID controller and NVSRAM firmware
- Downloading only NVSRAM firmware
- Downloading physical disk firmware
- Downloading MD3060e Series expansion module EMM firmware
- Self-Monitoring Analysis and Reporting Technology (SMART)
- Media errors and unreadable sectors
- Firmware inventory
- System interfaces
- Storage array software
- Start-up routine
- Device health conditions
- Trace buffers
- Collecting physical disk data
- Event log
- Recovery Guru
- Storage array profile
- Viewing the physical associations
- Recovering from unresponsive storage array condition
- Locating a physical disk
- Locating an expansion enclosure
- Capturing state information
- SMrepassist utility
- Unidentified devices
- Recovering from unidentified storage array
- Starting or restarting the Host Context Agent software
- Getting help
Dell EMC PowerVault MD 34XX/38XX Series Storage Arrays Administrator's Guide
Physical disk security with self encrypting disk
Self Encrypting
Disk (SED) technology prevents unauthorized access to the data on
a physical disk that is physically removed from the storage array.
The storage array has a security key. Self encrypting disks provide
access to data only through an array that has the correct security
key.
The self encrypting disk or a security capable physical disk encrypts data during writes and decrypts data during reads.
You can create a secure disk group from security capable physical disks. When you create a secure disk group from security capable physical disks, the physical disks in that disk group become security enabled. When a security capable physical disk has been security enabled, the physical disk requires the correct security key from a RAID controller module to read or write the data. All the physical disks and RAID controller modules in a storage array share security key. The shared security key provides read and write access to the physical disks, while the physical disk encryption key on each physical disk is used to encrypt the data. A security capable physical disk works like any other physical disk until it is security enabled.
Whenever the power is turned off and turned on again, all the security enabled physical disks change to a security locked state. In this state, the data is inaccessible until the correct security key is provided by a RAID controller module.
You can view the self encrypting
disk status of any physical disk in the storage array from the Physical
Disk Properties dialog. The status information reports whether the
physical disk is:
- Security capable
- Secure—Security enabled or disabled
- Read/Write Accessible—Security locked or unlocked
You can view the self encrypting disk status
of any disk group in the storage array. The status information reports
whether the storage array is:
- Security capable
- Secure
| Secure | Security Capable - Yes | Security Capable - No |
|---|---|---|
| Yes | The disk group is composed of all SED physical disks and is in a Secure state. | Not applicable. Only SED physical disks can be in a Secure state. |
| No | The disk group is composed of all SED physical disks and is in a Non-Secure state. | The disk group is not entirely composed of SED physical disks. |
The Physical Disk Security menu is displayed in the Storage Array menu.
The Physical Disk Security menu has the following
options:
- Create Key
- Change Key
- Save Key
- Validate Key
- Import Key
- Unlock Drives
NOTE: If you have
not created a security key for the storage array, the Create
Key option is active. If you have created a security key
for the storage array, the Create Key option
is inactive with a check mark to the left. The Change Key option, the Save Key option, and the Validate Key option are now active.
The Secure Physical Disks option
is displayed in the Disk Group menu. The Secure Physical Disks option is active if these conditions
are true:
- The selected storage array is not security enabled but is comprised entirely of security capable physical disks.
- The storage array contains no snapshot base virtual disks or snapshot repository virtual disks.
- The disk group is in an Optimal state.
- A security key is set up for the storage array.
NOTE: The Secure Physical Disks option is inactive if these conditions
are not true.
The Secure Physical Disks option is inactive with a check mark to the left if the disk group is already security enabled.
The Create a secure disk group option is displayed in the Create Disk Group Wizard–Disk Group Name and Physical Disk Selection dialog. The Create
a secure disk group option is active only when these conditions
are met:
- A security key is installed in the storage array.
- At least one security capable physical disk is installed in the storage array.
- All the physical disks that you selected on the Hardware tab are security capable physical disks.
You can erase security enabled physical disks so that you can reuse the physical disks in another disk group or in another storage array. When you erase security enabled physical disks, ensure that the data cannot be read. When all the physical disks that you have selected in the Physical Disk type pane are security enabled, and none of the selected physical disk is part of a disk group, the Secure Erase option is displayed in the Hardware menu.
The storage array password protects a storage array from potentially destructive operations by unauthorized users. The storage array password is independent from self encrypting disk, and should not be confused with the pass phrase that is used to protect copies of a security key. However, it is good practice to set a storage array password.
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please provide ratings (1-5 stars).
Please select whether the article was helpful or not.
Comments cannot contain these special characters: <>()\