FAQ
How to size storage for my backups?
Refer to the Backup Sizing section in the Backup and Restore guide for more details.
How to do a factory reset? What does it do?
To reset the appliance to the factory default, you can use sdkms_cleanup.sh script available under /opt/fortanix/sdkms/bin/.
What is the default PKCS#11 log rotation policy?
Fortanix DSM cluster logs used for system debugging are now rotated by default to prevent disk space issues. They are rotated at 1G and maintains two previous/rotated logs
How to interpret the appliance uptime that is displayed?
The uptime shown in the Intelligent Platform Management Interface (IPMI) WebUI is the total uptime of the server since it was built.
What are the different FIPS level Fortanix DSM supports?
Fortanix DSM supports FIPS Level 3.
How to capture support data that will help in easy debugging?
From Fortanix DSM 3.23 release the following script can be used to debug faster.
How to capture support data that will help in easy debugging?
From Fortanix DSM 3.23 release the following script can be used to debug faster.
/opt/fortanix/sdkms/bin/support_dump.sh --node-info
sudo /opt/fortanix/sdkms/bin/support_dump.sh --cluster-infoThis will generate a support dump under /data folder.
Does the Disaster Recovery (DR) node need to be joined to the cluster during an upgrade?
No, adding the DR node to the cluster during the upgrade activity is not necessary. Fortanix recommends upgrading the DR node separately, followed by the main cluster upgrade.
Can the DR node be upgraded independently from the cluster?
A Cluster Master Key (CMK) rotation on the cluster would require the DR node to be wiped and joined again.
How do I find the Fortanix DSM cluster URL?
You can use the following methods to get the Fortanix DSM cluster URL:
Method 1: Cluster URL can be found by running the below curl commands on the CLI:
Using curl command:
curl -vk https://sdkms-pod-ip:4444/sys/v1/healthUsing openssl command:
openssl s_client -connect nodeip:443
Method 2: Cluster URL can be found in the Fortanix DSM browser window.
Example: https://amer.smartkey.io where “amer.smartkey.io” is the cluster URL
How to power off the Fortanix DSM node?
You can use one of the following methods to power off each Fortanix DSM node:
Using the IPMI web console:
Log in to the IPMI web console and go to the Power Control tab to power off the node.
Using the DSM CLI commands.
How to restart an sdkms-ui service on a hardware cluster?
The sdkms-ui is an integrated service in the Fortanix DSM cluster. You must do a rolling restart of the sdkms-ui service from the DSM command line interface (CLI), or you can run the following command one by one on each node:
kubectl delete pod sdkms-ui-xxxxWhere, xxxx is the name of the sdkms-ui pod on each node.