The web client allows you to configure library access to a primary and secondary Quantum Encryption Key Manager (Q-EKM) or Quantum Key Manager (QKM) server. For an overview of library managed encryption, see About Library Managed Encryption.
![]() |
NOTE: You cannot edit the encryption system configuration settings when any QKM partition is enabled for library managed encryption. If this happens, go to Setup > Encryption > Partition Configuration, change all QKM partition settings from Enable Library Managed to Allow Application Managed. Then make your changes to the system configuration settings. Finally, go back and change all the QKM partition settings back to Enable Library Managed. |
![]() |
NOTE: This operation should not be performed concurrently by multiple administrative users logged in from different locations. You can access the appropriate screens, but you cannot apply changes while another administrative user is performing the same operation. |
Users with administrative privileges can configure key server system settings, but users with user privileges cannot.
![]() |
NOTE: If you plan to use both Q-EKM and QKM, you can configure both here, one at a time. There are effectively two screens, which you can toggle between by using the drop-down list. Configure either Q-EKM or QKM first, click Apply to save your changes, then configure the other one. You can make changes to either screen whenever you need to, but remember that when you make a change, you must click Apply before switching to the other screen or your changes will not be saved. |
![]() |
NOTE: Keys are always encrypted before being sent from the Q-EKM server to a drive, whether SSL is enabled or not. Enabling SSL provides additional security. |
![]() |
NOTE: IP addresses must be in either IPv4 or IPv6 format. |
![]() |
NOTE: If you change the Q-EKM port number for the key server from the default setting on the library, you must also change the port number on the actual key server to match, or library managed encryption will not work properly. See your key server user's manual for information on changing the port number on the server. |
![]() |
NOTE: For Q-EKM: If you are using a secondary key server, then the port numbers for both the primary and secondary key servers must be set to the same value. If they are not, synchronization and failover will not occur. |
The Progress Window appears. The Progress Window contains information on the action, elapsed time, and status of the requested operation. Do one of the following:
For instructions on how to save the library configuration, see Saving the Configuration.
You may also access the EKM Path Diagnostics from this screen. For more information, see Encryption Key Manager Path Diagnostics.
See also: