Use this page to create and configure an encrypted file system (EFS) for PowerHA® SystemMirror. This task is optional for configuring federated security.
PowerHA SystemMirror uses an EFS keystore to maintain the details of users and groups in a cluster. This keystore file is stored either on a shared file system or in a Lightweight Directory Access Protocol (LDAP). You must create the EFS keystore before you create or an add EFS to the cluster.
Configuring EFS adds a layer of security
by encrypting all user information in the registry. You can configure
EFS to encrypt user information for either type of registry. Using
EFS also enables users to encrypt their data through the use of credentials
in a keystore specific to a user.
You can select this option for the keystore only when you select the Shared file system value for the EFS keystore mode property.
You can select this option for the keystore only when you select the Shared file system value for the EFS keystore mode property.
For more information about changing an EFS keystore, see the Changing an encrypted file system (EFS) configuration topic in the AIX® Information Center.