Creating an Encrypted Filesystem or LUN (CLI)

Language:

Shares (filesystems and LUNs) can be encrypted individually or they can be encrypted at the project level because shares inherit project properties. If the project is encrypted, a filesystem or LUN created within it is also encrypted. To create an individual encrypted filesystem or LUN that is in an unencrypted project, use the following procedure.

Before You Begin

To use encryption, you must configure it first; see Data Encryption.

Go to shares.
```
hostname:> shares
```
Enter select and the project name.
In this example, the default project is selected.
```
hostname:shares > select default
```
Enter filesystem and a filesystem name, or lun and a LUN name.
A name must consist of 1 to 64 characters, but not include spaces or begin with a period. Allowable characters are: alphanumeric and special characters _ - . :

The following example creates a filesystem named fs-1 in the default project.
```
hostname:shares default> filesystem fs-1
hostname:shares default/fs-1 (uncommitted)> 
```

If creating a LUN, enter set volsize= and the volume size.

hostname:shares default/lun1 (uncommitted)> set volsize=2G
                       volsize = 2G (uncommitted)

To enable encryption, enter set encryption= and the encryption type.

hostname:shares default/fs-1 (uncommitted)> set encryption=aes-128-ccm
                    encryption = aes-128-ccm (uncommitted)

Configure encryption using either the LOCAL keystore or the Oracle Key Manager (OKM) keystore. Enter set keystore= and either LOCAL or OKM.
```
hostname:shares default/fs-1 (uncommitted)> set keystore=LOCAL
                      keystore = LOCAL (uncommitted)
```

To set the encryption key, enter set keyname= and the key name.

hostname:shares default/fs-1 (uncommitted)> set keyname=MyFirstKey
                       keyname = MyFirstKey (uncommitted)

Enter commit.

hostname:shares default/fs-1 (uncommitted)> commit

Creating an Encrypted Filesystem or LUN (CLI)

Related Topics