Chapter 7 Encryption Key ManagementConfiguring Encryption Key Management on the LibraryScalar i500 User’s Guide 177For an initial key request, the library tries server #1 (the primaryserver) first. If server #1 is not available to perform a key request, thelibrary tries server #2. For KMIP key managers, if server #2 is notavailable, the library will try server #3, and so on, in order.Once the library identifies a server that can perform the request, thisserver remains the active server until it fails a key request or thelibrary is rebooted. At that point, the library starts over and usesserver #1 for key requests.In the text boxes, type either:• The IPv4 or IPv6 address of the key server (if DNS is notenabled), or• The host name of the key server (if DNS is enabled).8 Port — In the Port text boxes, type the port numbers corresponding tothe listed servers. The port number listed in the text box must matchthe port number on the server. Note the following:• Q-EKM — The default port number is 3801 unless SSL is enabled.If SSL is enabled, the default port number is 443.Note: Q-EKM requires one or two servers. If you do not plan touse a secondary key server, you may type a zero IPaddress, 0.0.0.0, in the #2 text box, or you may leave thetext box blank.SKM requires two servers.KMIP Key Manager requires at least two servers and canhave up to 10 servers for increased failover capacity.Note: If you change the Q-EKM port number listed in thePort text box from the default setting on the library,you must also change the port number on the actualkey server to match, or library managed encryptionwill not work properly. See theQuantum EncryptionKey Manager User’s Guide for information on settingthe port number on the Q-EKM key server.