Configuring encryption

For SuperMicro based servers, it is necessary to configure the trusted platform module before you enable encryption.

The system supports optional encryption of data at rest. This support protects against the potential exposure of sensitive user data and user metadata that is stored on discarded, lost, or stolen storage devices.

If all copies of the encryption key are lost and your system contains encrypted arrays with of SAS drives, then all SAS drives connected the enclosure go offline, even those drives that belong to unencrypted arrays.

If your system contains existing volumes in non-encrypted pools after you configure encryption, you can migrate these volumes to encrypted pools.

Within the management GUI, there are two ways to activate an encryption license on the system. During system setup, you are prompted to either manually or automatically activate the license on the system. Automatic activation requires that the notebook that is being used to activate the license is connected to an external network. If you purchased a license after system setup is completed, go to Settings > Systems > Licensed Functions and select Encryption Licenses.