CloudLink Center machine group properties

This topic provides information about the group properties of a machine in CloudLink Center.

A machine group is composed of several properties. You define many of these properties when creating a machine group. You can modify these properties at a later time. Other properties are for informational purposes only and cannot be changed.

Machine group properties include:

  • Name —The unique name of the machine group.
  • Description (optional)—A brief description of the machine group.
  • Keystore —The keystore used by all machines in the group. For information, see Set the current keystore.
  • Managed By—The names of the roles that administer this machine group.
  • Approved Networks (optional)—The networks to which machines in this group belong. The networks must be defined as an approved network. For more information, see Manage approved networks for machine groups.
  • Approved Locations (optional)—An approved location is used to verify that a machine is in the correct place when the machine starts. For more information, see Manage approved locations for machine groups.
  • Shutdown on Locations Failure—Whether or not to automatically power off a machine that starts up outside of an approved location.
  • Registration Code—The code used when deploying CloudLink Agent to a machine to assign it to this machine group.

    During deployment of CloudLink Agent to a machine, it is assigned to the Default machine group if no group registration code is provided. As a deployment option, you can assign the machine to another, existing group by specifying the machine group’s registration code in the deployment command. For more information, see the Dell EMC CloudLink 7.0.1 Deployment Guide.

  • Volume Encryption Policy (For Enterprise and Microsoft Azure and Azure Stack)—The volume encryption policy that applies to all machines in a group. For more information, see CloudLink volume encryption policy.
  • Manage SED Drives —Select Enabled to have CloudLink manage SED encryption keys. When a machine with SEDs is registered with this machine group, CloudLink Center controls releasing keys to all SEDs in that machine.

    If you select Disabled, a CloudLink administrator must manually select each SED in the machine to control encryption key release.

    This property is only available if you have an SED license and select either the All Data or Boot and All Data encryption policy.

  • Machine Agent Upgrade —Whether or not to automatically upgrade a machine's CloudLink Agent when you upgrade CloudLink Center.
  • Max Usage Since Last Reset —The maximum number of encrypted machine instances (instance or socket license) or encrypted capacity used in this group since the last reset. This information might be useful if you are assessing your peak license usage over a specific time frame.
  • Current Usage—The number of machine instances currently encrypted (instance or socket license) or encrypted capacity used in a group.
  • Key Lifetime—The frequency that CloudLink Center updates for machines in the group. Once a key is updated, the previous key is expired. By default, keys never expire, which is referred to as an infinite lifetime.

    You can trigger automatic encryption key changes based on a time interval of days. For example, if you specify an interval of one day, new encryption keys are generated every day.

    When modifying a key lifetime, you can change the following values:
    • Infinite—The encryption key never expires
    • <Number> days—A list of preset values for the number of days before expiry
    • Custom—A number of days before expiry that you specify
  • Policies —The current setting of the key release policies that control automatic startup of machines in the group. For more information, see CloudLink key release policies.