Automatic EKM Path Diagnostics

You can enable the library to automatically perform EKM Path Diagnostics on all EKM key servers at selected intervals. During each interval, the library tests every configured key server. The library generates a RAS ticket if there are problems.

Automatic EKM Path Diagnostics is disabled by default. The default test interval is 4 hours. It is recommended that you leave Automatic EKM Path Diagnostics disabled, unless network interruptions are a common cause of encryption failures at your site.

CAUTION: Running Automatic EKM Path Diagnostics may cause an increase in RAS tickets if tests are skipped due to tape drives being unavailable for a configurable number of consecutive test intervals. To reduce the occurrences of RAS tickets, you can specify the number of consecutive test intervals required to generate a RAS ticket to a higher number, or you can set the library to never generate a RAS ticket for missed test intervals.

For a list of tests performed, see EKM Path Diagnostics. Note that the Automatic diagnostics differs from the Manual diagnostics in the following ways:

To enable Automatic EKM Path Diagnostics:

  1. Select Setup > Encryption > System Configuration.
  2. Select the Automatic EKM Path Diagnostics check box.
  3. Select a test interval from the Interval drop-down list. The default test interval is 4 hours.
  4. From the Test Warning Threshold drop-down list, select the number of consecutive, missed test intervals required before the library generates a RAS ticket informing you that the test could not be performed within the specified number of test intervals. You can select "Off" or any value from 1 to 24. If you select "Off," the library will never generate a RAS ticket, no matter how many tests are missed. The default threshold is 3.

See also: