Windows System and ES GuardPoint Administration
The voradmin command is a command line utility for management of CTE specific configuration and status reporting. The voradmin command also supports configuration management related to ES GuardPoints (ESG).
Windows supports the following voradmin esg commands.
voradmin esg list disk
Command: voradmin esg list disk
Lists the disks available on the Windows host. The Disk### column matches the disk numbers in the Windows Disk Manager. The Device Name column shows the name of the disk that you need to use with other voradmin commands. In the following example, the Device Name for Disk1 is \Device\00000036.
For example:
voradmin esg list disk
Disk### Device Name Boot Disk Size Status Partition Read Only SERIAL NUMBER
------- ------------------------------ --------- --------- --------- --------- --------- ---------------
Disk0 \Device\Ide\IdeDeviceP0T0L0-0 Yes 127.0 GB Online MBR No 6000c29d241599...
Disk1 \Device\00000032 No 49.9 GB Online MBR No 6000c29b1d5a4c...
Disk2 \Device\00000033 No 50.9 GB Online MBR Yes 6000c290582227...
Disk3 \Device\00000034 No 50.9 GB Online MBR No 6000c290fd627b...
voradmin esg config
Command: voradmin esg config [new|xform] <device-name>=<device-label>
Initializes a new or existing Windows device so that it can be protected as an ES GuardPoint through the CipherTrust Manager. For details on using this command, see Initialize New Windows Devices and Initialize and Resize Existing Windows Devices.
voradmin esg status
Command: voradmin esg status
Displays the status of the disks on the host. The Disk### column matches the disk numbers in the Windows Disk Manager. The Device Name column shows the name of the disk that you need to use with other voradmin commands. In the following example, the Device Name for Disk1 is \Device\00000032.
If the device has been initialized, the user-defined disk label appears in the ESG Device Label column. If the device has been protected with an ES GuardPoint through the CipherTrust Manager, the Guard Status column displays “guarded”. The Xform Status column displays the status of any data transformation processes run on the disk. NA means it was a new disk, so no data transformation was needed. For existing disks, the Xform Status can be Not Started, In Progress, or Completed.
For example:
voradmin esg status
Disk### Device Name Boot Disk ESG Device label Guard Status Xform Status
------- --------------------------------- --------- ------------------------ ------------- -------------
Disk0 \Device\Ide\IdeDeviceP0T0L0-0 Yes NA guarded
Disk1 \Device\00000032 No ExistWinDisk1 guarded Completed
Disk2 \Device\00000033 No NewESDisk guarded NA
Disk3 \Device\00000034 No ExistWinDisk2 guarded Completed
voradmin esg status [xform] <device-label>
Displays the details of the device specified in <device-label>, where <device-label> is the ESG Device Label assigned to the device. If you use the optional xform paramater, the command displays the status of any data transformation processes running on the device.
For example:
voradmin esg status NewESDisk
Disk### Disk2
Device Name \Device\00000033
Serial Number
Boot Disk No
ESG Device label NewESDisk
Guard Status Guarded
Xform Status NA
Key UUID cf242f18-de61-3f72-ba57-0b28a94a4f21
C:\> voradmin esg status xform NewESDisk
ESG Rekey/Xform Status
-----------------------
Status :NA
Device Type :New
Key Information:
Key UUID :cf242f18-de61-3f72-ba57-0b28a94a4f21
KeyID :48361
KeyName :ES-Key
Old KeyID :0
Old KeyName :clear_key
Block information:
Transformed :0
Remaining :0
Total :0
voradmin esg delete
Command: voradmin esg delete <disk-label>, where:
<disk-label> is the user-defined label that was specified when the device was initialized. To view a list of disk labels, use the voradmin esg status command.
Removes the ES Header from the specified device. The device cannot be protected as an ES GuardPoint or this command will fail.
For example:
voradmin esg delete NewESDisk
ES disk header deleted successfully.
