How it Works
HP
Loading...
HP-UX Encrypted Volume and Filesystem
Administrator's Guide
174 pgs1.47 Mb1
White Paper
59 pgs1.53 Mb0
Table of contents
Loading...

HP HP-UX Encrypted Volume and Filesystem White Paper

Backing Up and Restoring Data on HP-UX EVFS Volumes Using HP OpenView Storage Data Protector 6.0
Legal Notices................................................................................................................................... 1
Executive Summary .............................................................................................................................. 1
Introduction......................................................................................................................................... 1
Limitations of Native Data Backup and Restore Tools on HP-UX EVFS ......................................................... 1
HP OpenView Storage Data Protector .................................................................................................... 2
Backup and Restore.......................................................................................................................... 2
Full Volume Backup of Encrypted Data to a Tape Device .......................................................................... 2
Restoring the Backed Up Data Created from an HP-UX EVFS Volume on a Tape Device ............................... 4
Performing File Level Incremental Backup of an HP-UX EVFS Volume .......................................................... 5
Restoring the File Level Incremental Backed Up Data to an HP-UX EVFS Volume .......................................... 7
Backing Up Keys of an HP-UX EVFS Volume............................................................................................ 8
Restoring the Backed Up Keys of an HP-UX EVFS Volume ......................................................................... 9
Testing Back Up and Recovery of Data on an HP-UX EVFS Volume Using HP OpenView Storage Data Protector10
Test Configuration Requirements ...................................................................................................... 10
Test Scenario 1.............................................................................................................................. 11
Test Scenario 1A - Full Volume Backup of Encrypted Data from an HP-UX EVFS Volume to a Tape Device11
Device ...................................................................................................................................... 25
Verifying the Full Backup and Recovery of the Encrypted Data ......................................................... 30
Test Scenario 2.............................................................................................................................. 31
Test Scenario 2A - File Level Incremental Backup of an Encrypted Volume ......................................... 31
Test Scenario 2B - Restoring the File Level Incremental Backup Data to the HP-UX EVFS Volume ........... 47
Test Scenario 3.............................................................................................................................. 51
Test Scenario 3A - Backup of Keys of an HP-UX EVFS Volume.......................................................... 51
Test Scenario 3B - Restoring the Backed Up Keys of an HP-UX EVFS Volume...................................... 54
Verifying the Backup and Recovery of the Keys of an HP-UX EVFS Volume ........................................ 56
Conclusion........................................................................................................................................ 57
Related Information............................................................................................................................ 57

Legal Notices

© Copyright 2007 Hewlett-Packard Development Company, L.P.
Confidential computer software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license.
The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.
UNIX® is a registered trademark of The Open Group.

Executive Summary

For enterprise customers, backing up and restoring data stored on HP-UX Encrypted Volume and File Systems (EVFS) volumes are critical. However, the available native backup tools such as cpio and dd pose some limitations. To overcome these limitations and to offer a reliable, easy, and efficient method to back up and restore data on HP-UX EVFS volumes, HP recommends using the HP OpenView Storage Data Protector 6.0 (Data Protector) software.
This white paper describes how to back up and restore critical data stored on HP-UX EVFS volumes using HP OpenView Storage Data Protector. It discusses two successfully tested scenarios for backing up and restoring data, and one scenario for backing up and restoring keys of the HP-UX EVFS volumes. It also discusses the limitations of the available native backup tools, such as cpio and dd.

Introduction

HP-UX EVFS protects data at rest (data on disks) by encrypting the data volumes. You can also use HP-UX EVFS to create an encrypted backup media. It prevents anyone who gains unauthorized physical access to the storage media from reading or using the data. HP-UX EVFS creates EVFS volumes, which are pseudo-devices (or virtual devices) layered on Logical Volume Manager (LVM), Veritas Volume Manager (VxVM), or physical volume devices. The HP-UX EVFS subsystem encrypts the data written to an HP-UX EVFS volume, and decrypts data read from an HP-UX EVFS volume per the requirements.
The operations to back up and restore large volumes of encrypted data on EVFS volumes must be carried out without any loss of critical data, or data corruption. Existing solutions, such as cpio and dd, which back up and restore data on EVFS volumes do not meet some of the specific backup requirements, such as backing up of large volumes of data across multiple tapes and incremental backups. The HP OpenView Storage Data Protector 6.0 (Data Protector), on the other hand, provides reliable data protection while supporting effective disk image (raw disk) backups. The Data Protector software also enables you to take full and incremental backup of data.
HP successfully tested the following: full volume backup of encrypted data from an HP-UX EVFS volume to a tape device; restoring the backed up data from a tape device; file level incremental back up of data on an HP-UX EVFS volume; restoring the file level incremental backed up data to an HP-UX EVFS volume; and backing up and restoring keys of an HP-UX EVFS volume. Based on these tests, HP has devised systematic procedures to perform these tasks using HP OpenView Storage Data Protector. This white paper describes how to perform these tasks.
The tasks described in this white paper were tested using the Disk Image (rawdisk) Backup and File System Backup feature supported by Data Protector. The backup media used were tape devices and file library devices. Disk image backup was used to back up raw encrypted volumes to a tape device. File system backup was used to perform full and incremental backup of data on an HP-UX EVFS volume. File system backup was also used to back up the keys of an HP-UX EVFS volume.
Limitations of Native Data Backup and Restore Tools on HP­UX EVFS
This section discusses the limitations of native backup tools, such as dd and cpio, when backing up or restoring data on HP-UX EVFS volumes.
Following are the limitations of using dd to back up and restore data on HP-UX EVFS volumes:
1
In the case of input files, which are larger than the physical size of the tape device, the data
spans across multiple tape devices. In addition, the block size (bs) must be specified accurately as an exact multiple of the physical device size. Failure to specify the exact block size can result in data inconsistency, or data overlap. For more information on this limitation, see dd(1).
The dd tool does not provide an option to perform an incremental backup operation. As a
result, only the recently updated or changed blocks of data are backed up.
Following are the limitations of using cpio to back up and restore data on HP-UX EVFS volumes:
The cpio tool does not support the archiving of files with sizes larger than 2 GB, and files
with user IDs or group IDs that are larger than 60 k. Files with user or group IDs greater than 60 K are archived and restored only under the user or group IDs of the current process.

HP OpenView Storage Data Protector

HP OpenView Storage Data Protector is a backup solution that provides reliable data protection and high accessibility for your fast-growing business data. It offers comprehensive backup and restore functionality specifically tailored for enterprise-wide and distributed environments. Data Protector is an effective back up and restore tool for environments that range from a single system to multiple (thousand) systems at different locations.
The Data Protector cell is the basic management unit in the data protector. It consists of a network environment with a Cell Manager system, one or more Installation Servers, client systems, and devices. The Cell Manager and Installation Server can be on the same system (default setting) or on different systems.
For more information on Data Protector and the features it supports, see the HP OpenView Storage Data Protector Concepts Guide, available at:
http://www.docs.hp.com

Backup and Restore

A backup is a process that creates a copy of data on the backup media. This copy is stored and kept for future use in case the original is destroyed or corrupted. In most cases, the source is data on a disk, such as files, directories, databases, and applications. If the backup is expected to be used for disaster recovery, it needs to be consistent. Software that actually copies data to the destination is a backup application. The destination is a backup device, such as a tape drive, with media to which a copy of the data is written.
A restore is a process that recreates the original data from a backup copy. This process consists of the preparation and actual restore of data, and some post-restore actions that make that data ready for use. The source is a backup copy. A restore application is software that actually writes data to a destination. The destination is usually a disk to which the original data is written.

Full Volume Backup of Encrypted Data to a Tape Device

This section describes how to perform a full volume backup of encrypted data from an HP-UX EVFS volume to a tape device.
Table 1 lists the source and the target for the full volume backup of encrypted data on HP-UX EVFS volumes.
2
Table 1 Source and Target for Full Volume Backup of Encrypted Data on HP-UX EVFS Volumes.
Source/Target Description
Source HP-UX EVFS volume open for raw
access
Target Tape device
To perform a full volume backup of encrypted data from an HP-UX EVFS volume to a tape device, complete the following steps:
Step 1 To configure an HP-UX EVFS volume on the source system, complete the following tasks:
1. Create a source LVM volume.
2. Create HP-UX EVFS volume device files by mapping the LVM volume to EVFS.
3. Generate user keys for the HP-UX EVFS volume.
4. Create an Encryption Metadata (EMD) area on the source HP-UX EVFS volume.
Step 2 To create a file system on an HP-UX EVFS volume, complete the following steps:
Note:
The following steps are optional
1. Enable the source HP-UX EVFS volume.
2. Create a file system on the source HP-UX EVFS volume, and mount the file system.
3. To verify if data is backed up properly, create a sample directory with sample files in
the directory on which the source HP-UX EVFS volume is mounted.
4. To unmount the file system on the HP-UX EVFS volume (if the file system exists), enter
the umount command.
Step 3 To open raw access to the HP-UX EVFS volume, complete the following tasks:
1. Disable the HP-UX EVFS volume. You must perform this step before opening the HP-
UX EVFS volume for raw access.
2. To open raw access to the source HP-UX EVFS volume, enter the evfsvol raw
command.
Caution:
After you open the volume for raw access, any entity reading data from the HP-UX EVFS volume receives encrypted data. Any entity writing data to the HP-UX EVFS volume writes directly to the underlying disk; EVFS does not encrypt the text. HP recommends that you use the evfsvol raw command only when creating encrypted backup media or restoring encrypted backup media.
Step 4 Back up data from the HP-UX EVFS volume to the target device by using the Disk Image (raw
volume) Backup feature of HP OpenView Storage Data Protector. For more information on using HP OpenView Storage Data Protector, see the HP Data Protector Software website at:
http://www.hp.com/go/dataprotector
3
Step 5 Close raw access to the source HP-UX EVFS volume by entering the evfsvol close
command to begin the procedure to return the volume to its original state.
Step 6 Enable the HP-UX EVFS volume using the evfsvol enable command, and remount the file
system on the HP-UX EVFS volume.
For more information on using HP OpenView Storage Data Protector to perform a full volume encrypted backup, see Test Scenario 1A. This scenario illustrates the full encrypted backup of raw data from a raw volume, /dev/evfs/vg01/ldp_raw volume, to a tape device /dev/rmt/0m.
Note:
You must back up the keys of an HP-UX EVFS volume when you back up the data on HP-UX EVFS volumes. For more information on how to back up keys of HP-UX EVFS volumes, see Backing Up Keys of an EVFS Volume
Note:
You can also back up and restore data using Data Protector with minimum manual intervention by specifying pre-exec and post-exec commands.
The pre-exec and post-exec commands can be set for a backup specification and, as such, executed on the Cell Manager system, or they can be specified as a backup object option and thus executed on the client system where the respective Disk Agent is running.
Pre-exec and post-exec script commands can be written as executables or shell scripts. These are not supplied by Data Protector and must be written separately by, for example, the backup operator.
.
Note:
To perform a full volume back up of encrypted data, you must specify the pre-exec and post-exec commands. Pre-exec commands include ensuring that the HP-UX EVFS volume is configured; unmounting the file systems, if any; disabling the HP-UX EVFS volume; and opening raw access to the HP­UX EVFS volume. Post-exec commands include closing raw access to the source HP-UX EVFS volume, and enabling and remounting the file system, if any.

Restoring the Backed Up Data Created from an HP-UX EVFS Volume on a Tape Device

This section describes how to restore the backed up encrypted data (originally created from an HP-UX EVFS volume) on a tape device.
Table 2 lists the source and the target for the recovery of backed up encrypted data that was originally created from an HP-UX EVFS volume.
Table 2 Source and Target for Restoring the Backed Up Encrypted Data
Source/Target Description
Source Tape device (stores backed up
encrypted data from an HP-UX EVFS volume)
4
Target HP-UX EVFS volume open for raw
access
To restore the backed up data on a tape device (originally created from an HP-UX EVFS volume) to an HP-UX EVFS volume by using the HP OpenView Storage Data Protector, complete the following steps:
Note:
You must restore the backed up keys of an HP-UX EVFS volume when you restore the backed up data on the HP-UX EVFS volumes. For more information on how to restore the backed up keys of HP-UX EVFS volumes, see Recovering Keys of an HP-UX EVFS Volume
.
Step 1 Open raw access to the target HP-UX EVFS volume by entering the evfsvol raw command. Step 2 Restore the data from the tape device to the target HP-UX EVFS volume by using HP
OpenView Storage Data Protector.
Step 3 Close the raw access to the HP-UX EVFS volume by entering the evfsvol close command
Step 4 Enable the HP-UX EVFS volume, and remount the file system on the HP-UX EVFS volume.
Note:
You need to perform this step only if you want to remount the file system.
For more information on using HP OpenView Storage Data Protector to recover the data backed up on a tape device by a full volume backup, see Test Scenario 1B. This scenario illustrates the recovery of data (created by a full volume backup of encrypted data) from a tape device, /dev/rmt/0m, to an HP-UX EVFS volume, /dev/evfs/vg01/ldp_raw volume, which is open for raw access.
Note:
You can also specify the pre-exec and post-exec commands to restore the backed up data on a tape device. Specifying the pre-exec commands includes opening raw access to the target HP-UX EVFS volume. Specifying the post-exec commands includes closing the raw access to the target HP­UX EVFS volume.

Performing File Level Incremental Backup of an HP-UX EVFS Volume

This section describes how to perform a file level incremental backup of an HP-UX EVFS volume using HP OpenView Storage Data Protector.
You must create either a file library device, or a device that supports file system backup in the directory mounted on the target HP-UX EVFS volume. This is required because you cannot back up the data on an HP-UX EVFS volume directly to another HP-UX EVFS volume by using HP OpenView Storage Data Protector.
Table 3 lists the source and the target for the file level incremental backup of an HP-UX EVFS volume.
5
Table 3 Source and Target for a File Level Incremental Backup of an HP-UX EVFS Volume
Source/Target Description
Source HP-UX EVFS volume
Target File library device or a device that
supports file system back up in a directory on which the HP-UX EVFS volume is mounted.
To perform a file level incremental backup of an HP-UX EVFS volume, complete the following steps:
Step 1 To create a sample encrypted volume with a file system on the source HP-UX EVFS volume,
complete the following tasks:
1. Create a source LVM volume.
2. Create HP-UX EVFS volume device files by mapping the LVM volume to EVFS.
3. Generate user keys for the HP-UX EVFS volume.
4. Create the EMD area on the source HP-UX EVFS volume.
5. Enable the source HP-UX EVFS volume.
Important:
After encryption and decryption for an EVFS volume is enabled, any entity reading the data from the HP-UX EVFS volume receives the data in clear text. You must use normal HP-UX file system permissions and access control to restrict access to the data.
6. Create a file system on the source HP-UX EVFS volume, and mount the file system.
7. Create a sample directory with sample files in the directory on which the source HP­UX EVFS volume is mounted, to verify if the data is backed up and restored properly.
Step 2 To create a sample encrypted volume with a file system on the target HP-UX EVFS volume,
complete the following tasks:
1. Create a source LVM volume.
2. Create the HP-UX EVFS volume device files by mapping the LVM volume to EVFS.
3. Generate user keys for the HP-UX EVFS volume.
4. Create the EMD area on the target HP-UX EVFS volume.
5. Enable the target HP-UX EVFS volume.
6. Create a file system on the target HP-UX EVFS volume, and mount the file system.
Step 3 Ensure that the source and target HP-UX EVFS volumes are enabled.
Step 4 Pass the sample directory with the sample files, where the source HP-UX EVFS volume is
mounted, to the Data Protector. Target is the required file device in the target directory on which the target HP-UX EVFS volume is mounted.
Step 5 Start the backup session.
6
For more information on using HP OpenView Storage Data Protector to perform an incremental backup of an HP-UX EVFS volume, see Test Scenario 2A. This scenario illustrates the full and the subsequent incremental backup of encrypted data on an HP-UX EVFS volume.
Note:
You can also specify the pre-exec command to perform a file level incremental backup. Specifying the pre-exec command includes enabling the source HP-UX EVFS volume.

Restoring the File Level Incremental Backed Up Data to an HP-UX EVFS Volume

This section describes how to restore backed up data on a file library device in the directory mounted on an HP-UX EVFS volume (created from an HP-UX EVFS volume) using HP OpenView Storage Data Protector.
Table 4 lists the source and the target for restoring the file level incremental backed up data to the HP­UX EVFS volumes.
Table 4 Source and Target for Restoring File Level Incremental Backed Up Data to on HP-UX EVFS Volume
Source/Target Description
Source File library device or a device that
supports file system back up in a directory on which the HP-UX EVFS volume is mounted.
Target HP-UX EVFS volume
The HP OpenView Storage Data Protector receives the backed up data in clear text from the source HP-UX EVFS volume, and the original HP-UX EVFS volume (target) re-encrypts the data.
To successfully restore the file level incremental backed up data to an HP-UX EVFS volume (originally created from another HP-UX EVFS volume) using HP OpenView Storage Data Protector, complete the following steps:
Step 1 Ensure that the source and target HP-UX EVFS volumes are enabled.
Step 2 Restore the data from the source to the target HP-UX EVFS volume by using HP OpenView
Storage Data Protector.
Note:
You can also specify the pre-exec command to restore the file level incremental backed up data. Specifying the pre-exec command includes enabling the target HP-UX EVFS volume.
7

Backing Up Keys of an HP-UX EVFS Volume

This section describes how to back up the keys of an HP-UX EVFS volume by using HP OpenView Storage Data Protector.
EVFS uses symmetric volume encryption keys to encrypt the volume data. EVFS also uses public and private keys to encrypt the volume encryption keys, and it uses passphrases to encrypt private keys. Hence, it is critical to back up the keys along with the data. The keys that are backed up include the public keys, private keys, and passphrase files in the default key storage directory
(/etc/evfs/pkey).
Note:
You must back up the keys of an HP-UX EVFS volume when you back up the data on HP-UX EVFS volumes. However, for security reasons, HP recommends that you back up the keys of an HP-UX EVFS volume to a backup medium, which is different from the backup medium on which the data is backed up.
Table 5 lists the source and the target for the backup of keys of an HP-UX EVFS volume.
Table 5 Source and Target for the Backup of Keys of an HP-UX EVFS Volume
Source/Target Description
Source Key directory structure on the client
system (where HP-UX EVFS is configured)
Target Tape device or a file library device
To back up the keys of an HP-UX EVFS volume by using HP OpenView Storage Data Protector, complete the following steps:
Note:
You must back up the keys whenever the keys are modified.
Step 1 To create a sample HP-UX EVFS volume, complete the following tasks:
(This step is not necessary if the source HP-UX EVFS volume already exists with the keys.)
1. Create a source LVM volume for the HP-UX EVFS volume.
2. Create HP-UX EVFS volume device files by mapping the LVM volume to EVFS.
3. Generate user keys for the EVFS volume.
Step 2 Back up the keys of the HP-UX EVFS volume to the tape, or a file library device by using HP OpenView Storage Data Protector. For more information on using HP OpenView Storage Data Protector, see the HP Data Protector Software website at:
http://www.hp.com/go/dataprotector
For more information on using HP OpenView Storage Data Protector to back up keys of an HP-UX EVFS volume, see Test Scenario 3A.
8

Restoring the Backed Up Keys of an HP-UX EVFS Volume

This section describes how to restore the backed up keys of an HP-UX EVFS volume by using HP OpenView Storage Data Protector.
The backed up keys that are restored include public keys, private keys, and passphrase files in the default key storage directory (/etc/evfs/pkey). HP recommends that you restore the backed up keys after you restore the backed up data on an HP-UX EVFS volume.
Note:
Restore the passphrase files only if you are restoring the data back to the system from which the data was backed up. If you are restoring the data to a different system, you must create new passphrase files.
Table 6 lists the source and the target for the recovery of the backed up keys of an HP-UX EVFS volume.
Table 6 Source and Target for the Recovery of Backed Up Keys of an HP-UX EVFS Volume
Source/Target Description
Source Tape device or a file library device
Target Key directory structure on the client
system (where HP-UX EVFS is configured)
To restore the backed up keys of an HP-UX EVFS volume by using HP OpenView Storage Data Protector, complete the following steps:
Step 1 To create a sample HP-UX EVFS volume, complete the following tasks (This step is not
necessary if the HP-UX EVFS volume already exists):
1. Create a source LVM volume for the HP-UX EVFS volume.
2. Create HP-UX EVFS volume device files by mapping the LVM volume to EVFS.
Step 2 Restore the keys from the backup medium to the required directory on the client system
by using HP OpenView Storage Data Protector. For more information on using HP OpenView
Storage Data Protector, see the HP Data Protector Software website at:
http://www.hp.com/go/dataprotector
You can also restore the backed up data to the target client system after restoring the keys. For more information, see Restoring the Backed Up Encrypted Data Created from an HP-UX
EVFS Volume on a Tape Device, or Restoring the File Level Incremental Backup Data to an HP­UX EVFS Volume). However, the keys must not be generated in the target client system. The
restored keys must be used (instead of the generated keys) to enable the HP-UX EVFS volumes.
Note:
Restore the passphrase files only if you are restoring the data back to the system from which the data was backed up. If you are restoring the data to a different system, you must create new passphrase files.
9
For more information on using HP OpenView Storage Data Protector to recover the backed up keys of an HP-UX EVFS volume, see Test Scenario 3B.

Testing Back Up and Recovery of Data on an HP-UX EVFS Volume Using HP OpenView Storage Data Protector

HP successfully tested the following scenarios to validate the effective backup and recovery of data on HP-UX EVFS volumes by using HP OpenView Storage Data Protector:
Test Scenario 1
To verify the full volume backup of encrypted data from an HP-UX EVFS volume to a tape device, and the recovery of data from the backup tape device to an HP-UX EVFS volume by using HP OpenView Storage Data Protector.
Note:
If the volume size is greater than the tape size, the data spans across multiple tapes. For more information, see Test Scenario 1A.
Test Scenario 2
To verify the file level incremental backup and recovery of data from an HP-UX EVFS volume to a disk partition that is also an encrypted volume, by using HP OpenView Storage Data Protector.
Test Scenario 3
To verify the backup and recovery of keys of an HP-UX EVFS volume, by using HP OpenView Storage Data Protector.

Test Configuration Requirements

This section discusses the test configuration requirements to replicate the scenarios to validate the effective backup and recovery of data on HP-UX EVFS volumes.
Table 7 lists the software requirements to replicate the tests for Scenario 1 and Scenario 2.
Table 7 Test Software Configuration
Product Configuration Used
Data Protector HP OpenView Storage Data Protector
A.06.00 Data Protector Cell Manager Version: 6.0
EVFS
Table 8 lists the system requirements to replicate the tests for Scenario 1 and Scenario 2
Table 8 System Requirements
Product System Requirement
HP-UX Encrypted Volume and File System (EVFS) A.01.00.01
10
Data Protector Cell Manager
Client System (Disk Agent and Media Agent)
Backup Medium

Test Scenario 1

HP 9000 System running HP-UX 11i v2
Integrity System running HP-UX 11i v2
Test Scenario 1
Test Scenario 2
Test Scenario 3
Tape device: HP:C7438A Tapes used :DDS-2 and DDS-4
File library device in the directory on which the target HP-UX EVFS volume is mounted.
Tape device or file library device

Test Scenario 1A - Full Volume Backup of Encrypted Data from an HP-UX EVFS Volume to a Tape Device

This scenario illustrates the steps performed when successfully testing a full volume backup of encrypted data from an HP-UX EVFS volume to a tape device, by using HP OpenView Storage Data Protector.
Table 9 lists the sample source and target in Test Scenario 1A.
Table 9 Sample Source and Target for Test Scenario 1A
Source/Target Description
Sample Source
Sample Target
Encrypted volume that is enabled for raw access, /dev/evfs/vg01/ldp_raw volume on the client system, evfs2.hp.com. The mount point in this scenario is /dp_raw.
The tape device that is mounted on
/dev/rmt/0m
To perform a full volume backup of encrypted data using HP OpenView Storage Data Protector, complete the following steps:
Step 1 To create an EVFS volume on the client system (source), evfs2.hp.com, complete the following
tasks:
1. To create an LVM volume of size 5 GB, enter the following command:
11
$ lvcreate -L 5120 -n ldp_raw vg01
The following output is displayed:
Logical volume "/dev/vg01/ldp_raw" has been successfully created with character device "/dev/vg01/rldp_raw". Logical volume "/dev/vg01/ldp_raw" has been successfully extended. Volume Group configuration for /dev/vg01 has been saved in /etc/lvmconf/vg01.conf
2. To map the LVM volume to an HP-UX EVFS volume, enter the following command:
$ evfsadm map /dev/vg01/ldp_raw
The following output is displayed:
Volume "/dev/vg01/ldp_raw" has been successfully mapped to EVFS volume "/dev/evfs/vg01/ldp_raw"
Step 2 To enable the HP-UX EVFS volume on the source client system, complete the following tasks:
1. To generate user keys for the HP-UX EVFS volume, enter the following command:
$ evfspkey keygen -p
The system prompts for the passphrase. Enter the passphrase and confirm it.
Enter passphrase:
Re-enter passphrase:
The following output is displayed:
Public/Private key pair "root.root" has been successfully generated
2. To create an EMD area, enter the following command:
$ evfsvol create /dev/evfs/vg01/ldp_raw
The system prompts for the owner passphrase. Enter the owner passphrase.
Enter owner passphrase:
The following output is displayed:
Encrypted volume "/dev/evfs/vg01/ldp_raw" has been successfully created
3. Enable the HP-UX EVFS volume by entering the evfsvol enable command, as follows:
$ evfsvol enable /dev/evfs/vg01/ldp_raw
The system prompts for the user passphrase. Enter the user passphrase.
Enter user passphrase:
The following output is displayed:
Encrypted volume "/dev/evfs/vg01/ldp_raw" has been successfully enabled
Step 3 To create a file system on the HP-UX EVFS volume, enter the following command:
$ newfs -F vxfs /dev/evfs/vg01/rldp_raw
The following output is displayed:
5242360 sectors, 5242360 blocks of size 1024, log size 16384 blocks largefiles supported
version 6 layout
12
Step 4 To create a sample directory to mount the HP-UX EVFS volume, enter the following command:
$ mkdir /dp_raw
Step 5 To mount the file system, enter the following command:
$ mount -F vxfs /dev/evfs/vg01/ldp_raw /dp_raw
Step 6 Create sample files in the directory on which the source HP-UX EVFS volume is mounted. In
this example, 5.3 GB of data is copied to the /dp_raw directory, as illustrated in the following directory listing:
$ ll /dp_raw
drwxr-xr-x 2 root root 96 Dec 18 11:19 lost+found
-rw-rw-rw- 1 root sys 5349361664 Dec 18 15:52 temp.tar
The following output is displayed:
total 10447988
Step 7 To unmount the file system, enter the following command:
$ umount /dp_raw
Step 8 To disable the HP-UX EVFS volume, enter the following command:
$ evfsvol disable /dev/evfs/vg01/ldp_raw
The system prompts for the user passphrase. Enter the user passphrase.
Enter user passphrase:
The following output is displayed:
Encrypted volume "/dev/evfs/vg01/ldp_raw" has been successfully disabled
Step 9 To open raw access to the HP-UX EVFS volume, enter the following command:
$ evfsvol raw /dev/evfs/vg01/ldp_raw
The following output is displayed:
"/dev/evfs/vg01/ldp_raw"? Raw access returns encrypted data to the user. Answer [yes/no]:yes Successfully enabled raw access to EVFS volume "/dev/evfs/vg01/ldp_raw"
Are you sure you want to enable raw access to
Step 10 To ensure that the HP-UX EVFS volume is open for raw access, enter the following command and check the state of the HP-UX EVFS volume:
$ evfsadm stat /dev/evfs/vg01/ldp_raw
The following output is displayed:
orr owr odr oer
----- EVFS Volume Name -----|--- State ---|----------------
/dev/evfs/vg01/ldp_raw raw 0 0 0 0
----- EVFS Volume Name -----|--- State ---|--------------- Counters -------------|
bpr bpw bpd bpe
/dev/evfs/vg01/ldp_raw raw 2728 4670435 2704 4683083
Queues --------------|
13
kbpsr kbpsw dkbps ekbps
----- EVFS Volume Name -----|--- State ---|---------------- Rates ---------------|
/dev/evfs/vg01/ldp_raw raw 209 18 676 90
Step 11 Connect to Data Protector Cell manager. To connect to the GUI version of the
HP OpenView Storage Data Protector, rlogin to the evfs6.hp.com system (system on which the data protector cell manager is installed), and invoke the required path
(/opt/omni/bin/xomni) for the cell manager, as shown in the following example:
evfs6# export DISPLAY=<hostname>:0.0 evfs6# /opt/omni/bin/xomni
Starting GUI... Please wait, this may take some time...
Step 12 To add the source system, evfs2.hp.com, as client to the HP OpenView Storage Data
Protector Cell Manager, complete the following tasks:
1. Select Clients in the Data Protector Cell Manager Context List.
2. Right click on Clients in the left pane, and select Add Clients, as shown in the following
figure:
3. Enter the client name, and select Add to add the client system, as shown in the following
figure:
14
4. Select the components that must be installed on the client system, as shown in the
following figure. In this example, the Disk Agent and Media Agent are installed on the client system.
5. Select Finish to complete installation of the required components on the client system.
15
Step 13 Connect the tape device to the client system, evfs2.hp.com, and insert the tape.
Step 14 To auto configure, scan and format the tape device that is connected to the client system
using HP OpenView Storage Data Protector, complete the following tasks:
1. Select Devices & Media in the Data Protector Cell Manager Context List.
2. Right-click Devices in the left pane, and select Autoconfigure Devices, as shown in the
following figure.
3. Select the client system to which the tape device is connected, as shown in the following
figure:
16
Loading...
+ 41 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use