Ongoing RDL operation

this section provides guidance on ongoing rdl operations general notes for kmip configurations the following notes apply to kmip you can only delete a certificate when no kmip server uses it use the kmip server to determine if it is in use through {{ch}} the purecert command does not include information on whether a certificate is in use currently, you cannot rename a kmip server or a certificate used with a kmip server how to block access to the flasharray if you need to block access to flasharray data immediately, perform one of the following steps and then either power down the flasharray or restart purity on the kmip server ( {{ch}} ), revoke the tls certificate used for communication with the flasharray you can recover later by redoing the certificate setup steps on the kmip server ( {{ch}} ), delete the secret key used for communication with the flasharray you cannot recover flasharray data after this step use this process only to make the array data permanently inaccessible these steps do not block data availability until you restart purity or power off the array all data on the flasharray might become inaccessible if any of the following events happen after rdl is enabled on the array the kmip server is removed or is not accessible the certificate used with the kmip server expires in these cases, you see an alert, but data remains accessible until the next purity restart or failover