KeyNexus Hyper-V Deployment Guide

Similar documents
WatchGuard XTMv Setup Guide Fireware XTM v11.8

Quest VROOM Quick Setup Guide for Quest Rapid Recovery for Windows and Quest Foglight vapp Installers

Proofpoint Threat Response

Quest VROOM Quick Setup Guide for Quest Rapid Recovery for Windows and Quest Foglight vapp Installers

NetScaler Analysis and Reporting. Goliath for NetScaler Installation Guide v4.0 For Deployment on VMware ESX/ESXi

Installation on Windows Server 2008

Easy Setup Guide. Cisco FindIT Network Probe. You can easily set up your FindIT Network Probe in this step-by-step guide.

ISO Installation Guide. Version 1.2 December 2015

F5 iworkflow and Citrix XenServer: Setup. Version 2.0.1

Quest VROOM Quick Setup Guide for Quest Rapid Recovery and Foglight Windows Installers

VMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager

Quick Start Guide For Ipswitch Failover v9.0.1

Edge Device Manager Quick Start Guide. Version R15

Cisco Prime Collaboration Deployment

Quest VROOM Quick Setup Guide for Quest Rapid Recovery and Foglight Windows Installers

Microsoft Hyper-V 2012

VMware vfabric Data Director Installation Guide

Document Date: January Version: AHM Page 1 of 20

USER GUIDE. CTERA Agent for Windows. June 2016 Version 5.5

F5 iworkflow and Microsoft Hyper-V: Setup. Version 2.2.0

QUICK SETUP GUIDE VIRTUAL APPLIANCE - VMWARE, XEN, HYPERV CommandCenter Secure Gateway

VMware Horizon FLEX Client User Guide

WatchGuard XTMv Setup Guide

StoneFly SCVM Deployment Guide for Microsoft Hyper-V

NTP Software File Auditor for Windows Edition

Installation Guide for Pulse on Windows Server 2012

VMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager

Create and Configure a VM in the Azure Step by Step Basic Lab (V2.0)

WatchGuard Dimension v2.0 Update 2 Release Notes. Introducing New Dimension Command. Build Number Revision Date 13 August 2015

VMware Horizon FLEX Client User Guide. 26 SEP 2017 Horizon FLEX 1.12

This guide details the deployment and initial configuration necessary to maximize the value of JetAdvantage Insights.

Threat Response Auto Pull (TRAP) - Installation Guide

Senstar Symphony. 7.2 Installation Guide

StoneFly SCVM Deployment Guide for Microsoft Hyper-V

VMware vfabric Data Director Installation Guide

MaaS360.com. MaaS360 On-Premises. Database Virtual Appliance Setup Guide

Getting Started With Windows 10

Creating Application Containers

Power IQ DCIM Monitoring Evaluation Copy A Step-By-Step Guide

BIG-IP Virtual Edition and Linux KVM: Setup. Version 12.1

BIG-IP Virtual Edition and Citrix XenServer: Setup. Version 12.1

DIGIOP ELEMENTS V8.1 Software-only Installation Guide

Sage 200c Professional. System Requirements and Prerequisites

Citrix Synchronizer Quick Start Guide

Avigilon Control Center Server User Guide

BIG-IP Virtual Edition and Microsoft Hyper- V: Setup. Version 12.1

Clearswift Gateway Installation & Getting Started Guide. Version 4.1 Document Revision 1.4

Version 2.3 User Guide

Netwrix Auditor. Virtual Appliance and Cloud Deployment Guide. Version: /25/2017

Creating Application Containers

All - In - One for Hyper- V

Link Gateway Initial Configuration Manual

Version 1.26 Installation Guide for SaaS Uila Deployment

Getting Started with ESX Server 3i Installable Update 2 and later for ESX Server 3i version 3.5 Installable and VirtualCenter 2.5

WatchGuard Dimension v2.1.1 Update 3 Release Notes

SpaceShuttle User guide v3

VMware Skyline Collector Installation and Configuration Guide. VMware Skyline 1.4

Install and Manage Windows Nano Server 2016 Step by Step

Sage 200c Professional. System Requirements and Prerequisites

Sage 200c Professional. System Requirements and Prerequisites

1.0. Quest Enterprise Reporter Discovery Manager USER GUIDE

NovaBACKUP CMon v19.0

Gnostice StarDocs On-Premises API Virtual Appliance

Dynamic Work Order System (DWOS) Installation Guide

MOVEit Transfer on Azure Marketplace Quickstart Guide. How to deploy and use MOVEit Transfer from Microsoft Azure Marketplace

KYOCERA Device Manager Installation and Upgrade Guide

akkadian Global Directory 3.0 System Administration Guide

Avigilon Control Center Server User Guide

Deploy the ExtraHop Discover Appliance with VMware

2 Initial Setup with Web Wizard

Installing the Cisco Virtual Network Management Center

Syncplicity Panorama with Isilon Storage. Technote

Version Installation Guide. 1 Bocada Installation Guide

McAfee epo Deep Command

NETWRIX PASSWORD EXPIRATION NOTIFIER

UDP Director Virtual Edition Installation and Configuration Guide (for Stealthwatch System v6.9.0)

NETWRIX INACTIVE USER TRACKER

SteelCentral AppResponse 11 Virtual Edition Installation Guide

Platform Compatibility... 1 Known Issues... 1 Resolved Issues... 2 Deploying the SRA Virtual Appliance... 3 Related Technical Documentation...


SRA Virtual Appliance Getting Started Guide

Office 365 Business and Office 365 Pro Plus Deployment Guide V 1.0

SMB Live. Modernize with Hybrid Cloud. Lab 1: Exploring Windows Server 2012 R2 & Hyper-V

Avigilon Control Center Server User Guide. Version 5.8

HySecure Quick Start Guide. HySecure 5.0

Quick Start Guide. KVM Hypervisor. Server Mode (Single-Interface Deployment) Before You Begin SUMMARY OF TASKS VIRTUAL APPLIANCE

CA Agile Central Administrator Guide. CA Agile Central On-Premises

ScaleArc Azure Deployment Guide

dctrack Quick Setup Guide (Recommended) Obtain a dctrack Support Website Username and Password

Cyberoam Virtual Security Appliance - Installation Guide for VMware Player. Version 10

Citrix Synchronizer Quick Start Guide

Virtual Appliance User s Guide


dctrack Quick Setup Guide Virtual Machine Requirements Requirements Requirements Preparing to Install dctrack

Media Server Installation & Administration Guide

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

Contents. Limitations. Prerequisites. Configuration

Veeam Backup & Replication

FusionHub. SpeedFusion Virtual Appliance. Installation Guide Version Peplink

Intel Small Business Extended Access. Deployment Guide

Transcription:

v1.0 09/2018

. Copyright Notice Copyright 2018 KeyNexus Inc. All rights reserved. Information in this document is subject to change without notice. The software described in this document is furnished under a license agreement or nondisclosure agreement. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form or any means electronic or mechanical, including photocopying and recording for any purpose other than the purchaser's personal use without written permission

Table of Contents Introduction... 4 System Requirements... 4 Hyper-V Requirements... 4 KeyNexus Requirements... 5 Port Configuration... 5 KeyNexus Ports... 5 Internode Communication... 6 Section 1: KeyNexus VM Deployment in Microsoft Hyper-V... 7 Section 2 KeyNexus Initialization and Activation...11 Cluster Node Initialization...11 Cluster Nodes...13 Section 3 KeyNexus Configuration... Error! Bookmark not defined. Account Login page...15

Introduction A Key Management Service provides you with the means to create, apply and manage encryption keys from a single location. Rather than using multiple encryption solutions to manage your keys, a Unified Key Manager (UKM) such as KeyNexus can manage all the keys used by your organization on all platforms and environments, resulting in reduced implementation times, resource allocation and usage, and providing better protection of your sensitive data. This document provides information relating the various aspects of the KeyNexus installation, activation and configuration process using the Microsoft Hyper-V virtualization platform. Hyper-V allows you to run multiple operating systems as virtual machines on Microsoft Windows. Section 1 Provides information and instruction relating to the deployment of the KeyNexus VM on the Microsoft Hyper-V platform. Section 2 Provides information and instruction relating to the node initialization, cluster configuration and activation of the KeyNexus UKM. The v1.0 supports KeyNexus version 1.11. Note: This document assumes you already have Hyper-V installed and configured. If you have not installed and configured Hyper-V, visit https://docs.microsoft.com/en-us/virtualization/index for more information. System Requirements This section is divided into two parts, requirements for Hyper-V and requirements for KeyNexus. Hyper-V Requirements OS Requirements Windows Server 2008 or later Pro, Enterprise and Education versions of Windows 7 or later Hardware Requirements 64-bit Processor with Second Level Address Translation (SLAT) Minimum of 4 GB memory Software Requirements Processor virtualization extensions (Intel-VT and AMD-V). If the extensions have not been enabled, a change to the CPU settings in your bios is required. Consult your system documentation for information regarding enabling virtualization. Page 4 of 18 KeyNexus

KeyNexus Requirements Hardware Requirements Hardware Requirement Processor Memory Storage Recommended: Intel quad core or higher Minimum: 6 GB RAM Recommended: 16 GB of RAM Minimum: 20 GB HDD Recommended: 40 GB HDD Software Requirements When deploying KeyNexus on Hyper-V, it is provided in a Virtual Hard Disk (vhd) format. As long as your system software meets the necessary requirements to run your virtual machine platform and meets the Hyper-V and KeyNexus hardware requirements, the KeyNexus VM will perform as described. Supported Browsers KeyNexus has been tested and is supported on the following browsers: Google Chrome Version 62.0.3202.94 (64-bit) Safari Version 11.0.1 (12604.3.5.1.1) Microsoft Edge Version 41.16299.15.0 (EdgeHTML 16.16299) Firefox Version 54.0.1 (64-bit) Microsoft Internet Explorer 11 Version 11.64.16299.0 Note: If you are using a browser version different from the ones shown here, your experience might be different. Port Configuration Before you begin initialization and configuring KeyNexus, it is important to confirm the ports that KeyNexus requires are open. If these ports are not open, you cannot access the KeyNexus client, or successfully make modifications to a KeyNexus cluster. KeyNexus Ports In order to access the KeyNexus Subscription Activator and the KeyNexus client, there are several ports that must be open. Make sure these ports are open in your firewall using the protocol indicated. port 8443 (TCP) port 1443 (TCP) port 443 (TCP) port 5696 (TCP) KeyNexus Page 5 of 18

Internode Communication When configuring KeyNexus to operate as a cluster, there are ports that must be open in order for the nodes that make up the cluster to communicate with one another. Make sure these ports are open in your firewall using the protocol indicated. port 8443 (TCP) port 2377 (TCP) port 7946 (TCP and UDP) port 4789 (UDP) port 50 (TCP) Page 6 of 18 KeyNexus

Section 1: KeyNexus VM Deployment in Microsoft Hyper-V The primary method of deploying KeyNexus is as a Virtual Machine (VM). This section describes the import and configuration of the KeyNexus file into Microsoft Hyper-V. 1. Open the Hyper-V Manager. If Hyper-V has been successfully installed, you should be able to perform a search for Hyper-V manager. When successful, the Hyper-V Manager screen appears. 2. In the Actions pane, click New > Virtual Machine. This starts the New Virtual Machine Wizard. KeyNexus Page 7 of 18

3. Review the information on the Before You Begin page and click Next to advance to the Specify Name and Location page. 4. Enter a name for the virtual machine in the Name field. Enter the path for where the virtual machine will be stored in the Location field or click Browse and navigate to the folder location and click Open. 5. Click Next to advance to the Specify Generation page. 6. Select Generation 1 from the Specify Generation options. If you are using a.vhd file, selecting the Generation 2 option does not allow you to complete the virtual machine setup. 7. Click Next to advance to the Assign Memory page. Page 8 of 18 KeyNexus

8. Set the Startup memory at a minimum of 6144 MB. Check Use Dynamic Memory for this virtual machine. Click Next to advance to the Configure Networking page. 9. Select Default Switch from the Connection dropdown list. Click Next to advance to the Connect Virtual Hard Disk page. 10. Select Use an existing virtual hard disk. Enter the path for the.vhd file in the Location field or click Browse and navigate to the.vhd file location. Select the file and click Open. Click Next. KeyNexus Page 9 of 18

11. On the Completing the new virtual machine wizard, review the items in the description field. If a change is required, click Previous to move back through the screens until you reach the item you want to change. Make the change and click Next until you return to the Completing the New Virtual Machine Wizard page. Click Finish to create your virtual machine. When the virtual machine is created, it appears in the Virtual Machines list. 12. Right click the VM and select Start. Page 10 of 18 KeyNexus

13. When the state changes to Running, right click the virtual machine again and select Connect. The Virtual Machine Console appears, displaying the IP Address of the KeyNexus VM. Enter this IP address in your browser to access the KeyNexus Subscription Activator page. Section 2 KeyNexus Initialization and Activation This section provides information regarding the initialization and activation of the KeyNexus UKM. Cluster Node Initialization To successfully configure your KeyNexus cluster, the nodes that make up that cluster must first be initialized. Perform this operation on each node before adding it to your cluster. To access the KeyNexus Subscription Activator, open your browser and provide the URL containing the IP address (for example https://<keynexus_ip>:8443 where <KeyNexus_IP> is the IP address of the KeyNexus node), or the fully qualified domain name. Make sure to add port 8443 to the end of the URL. Note: When applicable, accept the self-signed certificate when navigating to the Initialize Network Node, Cluster Configuration, or Account Login pages. If you are initializing a network node for the first time, the KeyNexus Subscription Activator page appears. Initialize a Node 1. Select Reboot if your system requires a reboot in order for the network config to take effect. KeyNexus Page 11 of 18

2. Select DHCP or Static from the Network Config options. Select DHCP to configure the network automatically using DHCP. Select Static to manually configure the host and enter your valid network information (IP Address, Network Mask, Network Gateway and DNS) in their respective fields. There are several considerations when deciding between using DHCP or Static IP: When using DHCP, if the same IP address cannot always be provided to the same node, DHCP should only be used for short term test clusters. If you need to use DHCP in a production environment, ensure that the same IP is provided to the same node using external tools such as pinned entries in the DHCP server. This helps to ensure that the same IP is provided to the same node. Static IP can be used in a production environment to help ensure the same IP is provided to the same node. Note: If you select Static, change the IP address of the machine and choose the Reboot option, the Cluster Configuration on the Initialize Network Node success page does not advance you to the Cluster Nodes page. The IP in the address tab of the browser is no longer associated with that node. You must connect to the activator again with one of the new IPs to finish the configuration once the reboot is complete. 3. Click Show Terms to review the Terms of Service and click Accept to accept them. Terms of service must be accepted to continue. Page 12 of 18 KeyNexus

4. Enter a Cluster Admin Password. Passwords must be 8-256 characters long. You must provide this password when clustering nodes. All nodes in a cluster must share the same password. 5. Click Initialize Node. If any configuration step has been missed or entered incorrectly, that area is highlighted in red when you attempt to initialize the node. The information in highlighted area must be entered correctly to continue. When the node has been initialized, a message indicating the node has been successfully initialized is displayed. 6. Click Cluster Configuration to continue. Perform this operation for each additional node that will be part of the cluster. An uninitialized node cannot be part of a cluster. Cluster Nodes Use the Cluster Nodes page to enter the name and IP address of each node in your cluster. 1. Enter the name and IP address of your first node in the NODE #1 box. 2. Click Add Node to open an additional node box. Enter the name and IP address of the second node. Repeat for each node you are adding to your cluster. When a valid node name and IP address are entered, the border around the Node box turns green. 3. To remove a node, click the x in the top right corner of the node box. You cannot remove NODE #1. Once you have configured all the nodes in your cluster, click Continue to Specify License. This button appears when at least one node contains a valid name and IP address. Use the License page to enter your subscription key, create a first admin username and password, re-enter your cluster configuration password, and set the external IP address for the node currently being configured. KeyNexus Page 13 of 18

Activate your KeyNexus Subscription 1. Provide your subscription key in the Subscription Key field. There are several ways you can enter your key. You can enter your key manually, you can cut and paste the key from a text file, or you can import the subscription key by dragging and dropping a text file containing the subscription key into the Subscription Key field. 2. Once a valid subscription key is entered in the Subscription Key field, information regarding the Business ID, the company associated with this subscription key, and the subscription key expiry date are displayed. 3. Create an admin user by entering a name in the Pick your admin username field. 4. Enter a password in the Pick your admin password field and verify it in the Pick your admin Password (Verify) field. The password must contain a minimum of 10 characters. KeyNexus uses a password strength meter to indicate the strength of the password and provides tips for creating stronger passwords. Note: The tips provided by the password strength meter are informational. As long as your password meets the minimum length requirement, KeyNexus accepts the password. Page 14 of 18 KeyNexus

5. Enter the Cluster Configuration Password you created during the node initialization. 6. Select the External IP address from the dropdown list. This list is made up of the nodes entered on the Cluster Nodes page. 7. Click Activate Cluster when all fields have been completed. It can take some time for this action to complete. Successful activation of the KeyNexus cluster brings you to a summary page that contains information regarding your Business ID, the nodes in your cluster, the Administrator account and company account details. Click the Portal URL link or the Log In button to go to the KeyNexus login page, where the Business ID and Username fields are prepopulated. Account Login page Once you have received your Business ID, provide the URL containing the IP address (for example https://<keynexus_ip>/login or the fully qualified domain name into your browser s address bar. Make sure to add /login to the end of the URL. You can log in with your regular login credentials (Business ID, Username and Password), using Single Sign-On (SSO), or with a Client Certificate. KeyNexus Page 15 of 18

1. Enter the Business Number provided on the Subscription Activation page in the Business field. 2. Click the Login via SSO button if you have Single Sign On (SSO) configured for this account, otherwise enter a Username and Password in the applicable fields. Refer to the Administration section for information regarding configuring the KeyNexus portal for Single Sign-On. 3. Click Login. 4. Alternatively, click Sign in with client certificate. If you have previously generated a client certificate, you can use it to sign in to the KeyNexus portal as the user associated with the client certificate. Drag and drop the certificate file into the dialog, or click in the dialog, locate the certificate and click Open. If you have not generated a client certificate, refer to the Users section for instructions regarding the creation of a user with an associated client certificate. A successful login advances you to the Dashboard Page. Page 16 of 18 KeyNexus

For information regarding the configuration of the KeyNexus Web Portal, refer to the KeyNexus Web Portal User Guide. KeyNexus Page 17 of 18

KeyNexus Inc. 205 2657 Wilfert Road Victoria, B.C. V9B 5Z3 Copyright 2018 KeyNexus Inc. All rights reserved. KeyNexus is a trademark of KeyNexus Inc. All other product names, logos, and brands are property of their respective owners. All other company, product and service names used in this document are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback