Fortinet black logo

Administration Guide

Home FortiAnalyzer BigData 7.4.0 Administration Guide
7.4.0
7.4.0
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.6
7.0.5
7.0.4
7.0.3
7.0.1
6.4.6
6.4.5
6.2.5
6.2.1

Initalize data-at-rest encryption

Initalize data-at-rest encryption

Data-at-rest encryption can only be performed during a fresh installation or after a factory reset.

To initialize data-at-rest encryption as part of a factory reset, you must execute the init command with --encrypt-data-disks. See the steps below.

To initialize data-at-rest encryption as part of a factory reset:
  1. Access the Security Event Manager Controller, and run the following command:

    fazbdctl reset cluster [--all-settings|--all-except-ip|--all-except-ssh|--all-except-ip-ssh]

    The Security Event Manager Controller reboots after a few minutes.

  2. After the Security Event Manager Controller reboots, re-connect to it and run the following command to verify that all members are detected and that the version is up-to-date:

    fazbdctl show members

  3. After verifying that all the members have a Joined state and status is not failed, run the following command:

    fazbdctl init cluster --encrypt-data-disks

  4. Follow the prompt to set a passphrase. Record the passphrase in a secure place and follow the remaining reset steps to complete initializing the cluster.

    See Hard reset FortiAnalyzer-BigData.

Previous
Next

Initalize data-at-rest encryption

Data-at-rest encryption can only be performed during a fresh installation or after a factory reset.

To initialize data-at-rest encryption as part of a factory reset, you must execute the init command with --encrypt-data-disks. See the steps below.

To initialize data-at-rest encryption as part of a factory reset:
  1. Access the Security Event Manager Controller, and run the following command:

    fazbdctl reset cluster [--all-settings|--all-except-ip|--all-except-ssh|--all-except-ip-ssh]

    The Security Event Manager Controller reboots after a few minutes.

  2. After the Security Event Manager Controller reboots, re-connect to it and run the following command to verify that all members are detected and that the version is up-to-date:

    fazbdctl show members

  3. After verifying that all the members have a Joined state and status is not failed, run the following command:

    fazbdctl init cluster --encrypt-data-disks

  4. Follow the prompt to set a passphrase. Record the passphrase in a secure place and follow the remaining reset steps to complete initializing the cluster.

    See Hard reset FortiAnalyzer-BigData.

Previous
Next