CloudLink Key Management for VMware vcenter Server Configuration Guide

Similar documents
VxRack System SDDC Enabling External Services

Dell EMC Extensions for VMware vrealize Automation

Integration Guide. Dell EMC Data Domain Operating System and Gemalto KeySecure. DD OS and Gemalto KeySecure Integration. Version 6.

Dell EMC Ready Solution for VMware vcloud NFV 3.0 OpenStack Edition Platform

Dell EMC Ready System for VDI on XC Series

Installing and Configuring vcloud Connector

Dell EMC Ready Architectures for VDI

Dell EMC Ready System for VDI on VxRail

OpenManage Management Pack for vrealize Operations Manager Version 1.1. Installation Guide

Dell EMC Ready Solution for VMware vcloud NFV 3.0 OpenStack Edition Platform

CloudLink SecureVM. Administration Guide. Version 4.0 P/N REV 01

Changing default password of root user for idrac9 by using Dell EMC License Manager

Installing and Configuring vcloud Connector

RSA NetWitness Logs. VMware ESX/ESXi. Event Source Log Configuration Guide. Last Modified: Tuesday, November 7, 2017

RSA NetWitness Logs. VMware vcenter Server. Event Source Log Configuration Guide. Last Modified: Thursday, November 30, 2017

Installing and Configuring vcenter Multi-Hypervisor Manager

EMC Storage Monitoring and Reporting

VMware ESXi Host Configuration

Dell EMC vsan Ready Nodes for VDI

Dell Storage Compellent Integration Tools for VMware

Dell EMC Ready Architectures for VDI

Dell Storage Integration Tools for VMware

NetScaler Analysis and Reporting. Goliath for NetScaler Installation Guide v4.0 For Deployment on VMware ESX/ESXi

DISCOVERY AND INVENTORY OF DELL EMC DEVICES BY USING DELL EMC OPENMANAGE ESSENTIALS (OME)

EMC CLARiiON iscsi Server Setup Guide for VMware ESX Server 3i and 3.x Hosts

Using vrealize Operations Tenant App as a Service Provider

Changing unique password of root user for idrac9 by using Dell EMC License Manager

THALES E-SECURITY VMware Encryption and KMIP: Integration with Vormetric Data Security Manager

Basic Configuration Installation Guide

Partner Information. Integration Overview Authentication Methods Supported

Dell EMC Isilon Search

Dell Storage Compellent Integration Tools for VMware

VIRTUAL GPU MANAGEMENT PACK FOR VMWARE VREALIZE OPERATIONS

SQL Database Migration Goliath Performance Monitor v11.7

EMC VSI for VMware vsphere AppSync Management

vcenter Support Assistant User's Guide

Plexxi Connect vsphere Plugin User Guide Releases through 2.5.0

Dell EMC ME4 Series vsphere Client Plug-in

Reconfiguring VMware vsphere Update Manager. Update 1 VMware vsphere 6.5 vsphere Update Manager 6.5

VMware Skyline Collector Installation and Configuration Guide. VMware Skyline 1.4

EMC Storage Monitoring and Reporting

Dell EMC Ready Solution for VMware vcloud NFV 3.0 OpenStack Edition Platform

Dell EMC SC Series Storage with SAS Front-end Support for VMware vsphere

Dell EMC Best Practices for Running VMware ESXi 6.5 or Later Clusters on XC Series Appliances and XC Core Systems

Basic Configuration Installation Guide

Dell EMC. VxRack System SDDC Upgrade Guide

How to Configure SSL/TLS SMTP Support Goliath Application Availability Monitor v3.0

Dell EMC Extensions for VMware vrealize Automation

Boot Attestation Service 3.0.0

VMware Skyline Collector User Guide. VMware Skyline 1.4

Dell EMC Unity Family Dell EMC Unity All Flash, Unity Hybrid, UnityVSA. Unity shut down and restart the system (power down and power up)

vcenter Support Assistant User's Guide

EMC VSI for VMware vsphere Web Client

Syncplicity Panorama with Isilon Storage. Technote

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

CloudLink SecureVM 3.3. Release Notes

Migrating vrealize Automation 6.2 to 7.1

VMware Horizon View Deployment

Table of Contents. Configure and Manage Logging in to the Management Portal Verify and Trust Certificates

Reconfiguring VMware vsphere Update Manager. 17 APR 2018 VMware vsphere 6.7 vsphere Update Manager 6.7

Managing Modular Infrastructure by using OpenManage Essentials (OME)

Dell Secure Mobile Access Connect Tunnel Service User Guide

Novell Identity Manager

Free Download: Quick Start Guide

Vaultive and SafeNet KeySecure KMIP Integration Guide v1.0. September 2016

Quick Start Guide ViPR Controller & ViPR SolutionPack

RecoverPoint for Virtual Machines

RSA Archer GRC Application Guide

VMware Skyline Collector Installation and Configuration Guide. VMware Skyline Collector 2.0

StarWind iscsi SAN & NAS:

efolder BDR for Veeam VMware Continuity Cloud Guide

Backup and Restore of the vcenter Server using the Avamar VMware Image Protection Solution

Symantec Managed PKI. Integration Guide for ActiveSync

McAfee Boot Attestation Service 3.5.0

VMware Management Pack

Dell EMC. Converged Technology Extension for Isilon Storage Product Guide

ENTERPRISE HYBRID CLOUD 4.1.1

Migrating vrealize Automation 6.2 to 7.2

Simple Support Matrix

Quick Start Guide ViPR Controller & ViPR SolutionPack

Wave 5.0. Wave OpenVPN Server Guide for Wave 5.0

StarWind iscsi SAN & NAS: Configuring 3-node HA Shared Storage for vsphere December 2012

VMware vrealize Operations for Horizon Security. VMware vrealize Operations for Horizon 6.5

Workspace ONE UEM Certificate Authentication for Cisco IPSec VPN. VMware Workspace ONE UEM 1810

OpenManage Integration for VMware vcenter Quick Installation Guide for vsphere Web Client Version 3.2

Oracle Service Registry - Oracle Enterprise Gateway Integration Guide

Dell EMC License Manager Version 1.5 User's Guide

OpenManage Essentials Managing Firmware and Driver Compliance by using Multiple Baselines

Technical Note. Restoring Dell EMC Avamar Checkpoint Backups from a Dell EMC Data Domain System After a Single Node Avamar Failure

DELL EMC OPENMANAGE ESSENTIALS (OME) SNMPV3 SUPPORT

Oracle Cloud Using the Evernote Adapter. Release 17.3

Cluster Server Generic Application Agent Configuration Guide - AIX, Linux, Solaris

Storage Manager 2018 R1. Installation Guide

Partner Information. Integration Overview. Remote Access Integration Architecture

Symantec Protection Center Getting Started Guide. Version 2.0

EMC ViPR Controller. Create a VM and Provision and RDM with ViPR Controller and VMware vrealize Automation. Version 2.

Quest VROOM Quick Setup Guide for Quest Rapid Recovery for Windows and Quest Foglight vapp Installers

EMC VSI for VMware vsphere Web Client

RSA Identity Governance and Lifecycle Collector Data Sheet for Zendesk

Transcription:

CloudLink Key Management for VMware vcenter Server Dell EMC CloudLink SecureVM Version 6.0, 6.5, and 6.6 H15988.3 January 2018 This contains procedures to create a trusted connection between CloudLink and a vcenter Server using KMIP. Topics include: Introduction... 2 Adding a KMIP partition...2 Adding a KMIP client...3 Configuring the Key Management Server... 3 Uploading the KMS certificate...4 Establishing a trusted connection... 4 Troubleshooting and getting help...4

CloudLink Key Management for VMware vcenter Server Introduction CloudLink versions 6.0, 6.5, and 6.6 supports the Key Management Interop Protocol (KMIP) to allow applications supporting that protocol to securely store keys and certificates. The applications, or KMIP clients, are given access to a single KMIP partition. A KMIP partition is a container for keys and certificates created by the client. All objects within a partition are encrypted using a key saved to the partition's keystore and are stored in the CloudLink Center database. The KMIP Server menu is only available in the CloudLink Center Contents pane after a KMIP license is uploaded. Use the following procedures to create a trusted connection between CloudLink Center and a vcenter Server by adding a KMIP partition and client. Note CloudLink 6.0, 6.5, and 6.6 support KMIP 1.1 through 1.3. Adding a KMIP partition Add a KMIP partition. 1. Log in to CloudLink Center as an administrator with permission to configure KMIP partitions and clients. 2. Ensure that you have a valid KMIP license. a. Select System > License in the Contents pane. b. Confirm that there is a valid KMIP license assigned. You must add a new KMIP partition to store keys and certificates separately from other KMIP clients. Adding a KMIP partition involves defining its name, keystore, managing role, and providing an optional description. 3. Select KMIP Server > Partitions in the Contents pane. 4. Select Add in the command bar and provide the following values: Partition Name A name for the KMIP partition Description (optional) A brief description of the partition Keystore The keystore used to store the encryption key that encrypts the KMIP objects Managed By The names of the roles that administer this KMIP partition 2 Dell EMC CloudLink SecureVM 6.0, 6.5, and 6.6 CloudLink Key Management for VMware vcenter Server

Adding a KMIP client Add a KMIP client to allow vcenter Server to connect to and authenticate the connection with CloudLink Center. 1. Select KMIP Server > Clients in the Contents pane. 2. Select Add in the command bar and provide the following values: Username Username for client authentication from the KMIP client Password Password for client authentication Partition The KMIP partition created in Adding a KMIP partition on page 2 The required keys and certificates are automatically downloaded in a ZIP file. 3. Extract the files ca.pem, cert.pem, and key.pem to an accessible location. Configuring the Key Management Server Configure CloudLink Center as the Key Management Server in vsphere Web Client. 1. Use the vsphere Web Client to log in to the vcenter Server. 2. Select the vcenter Server in the Object Navigator. 3. Select Configure > Key Management Servers in vsphere Web Client. 4. Select Add KMS and provide the following values: KMS cluster Select Create a new cluster Cluster name A user-friendly name for the cluster Server alias A user-friendly name for the CloudLink Center instance Server address Address of the CloudLink Center instance Server port Enter 5696 Proxy Address Leave it blank Proxy Port Leave it blank Adding a KMIP client 3

CloudLink Key Management for VMware vcenter Server User name Enter the username added in Adding a KMIP client on page 3 Password Enter the password added in Adding a KMIP client on page 3 Uploading the KMS certificate Upload the KMS certificate to vsphere Web Client. 1. In Key Management Servers, select the KMS created in Configuring the Key Management Server on page 3. 2. Select All Actions > Upload KMS certificate. 3. Select Upload file and select the ca.pem file from Adding a KMIP client on page 3. 4. Click OK. Establishing a trusted connection Establish a trusted connection between CloudLink Center and vsphere Server. Note If you are using a CloudLink Center cluster, separately add each CloudLink Center server in the cluster to the KMS. 1. Select Establish trust with KMS in Key Management Servers. 2. Select Upload certificate and private key and click OK. 3. Select Upload file in the KMS certificate section and select the cert.pem file from Adding a KMIP client on page 3. 4. Select Upload file in the private key section and select the key.pem file from Adding a KMIP client on page 3. 5. Click OK. The Connection Status changes to Normal. Troubleshooting and getting help Go to Dell EMC Online Support and click Service Center. You will see several options for contacting Dell EMC Technical Support. To open a service request, you must have a valid support agreement. Contact your Dell EMC sales representative for details about obtaining a valid support agreement or with questions about your account. Dell EMC support, product, and licensing information can also be obtained from your Dell EMC account manager. 4 Dell EMC CloudLink SecureVM 6.0, 6.5, and 6.6 CloudLink Key Management for VMware vcenter Server

Copyright 2014-2018 Dell Inc. or its subsidiaries. All rights reserved. Published January 2018 Dell believes the information in this publication is accurate as of its publication date. The information is subject to change without notice. THE INFORMATION IN THIS PUBLICATION IS PROVIDED AS-IS. DELL MAKES NO REPRESENTATIONS OR WARRANTIES OF ANY KIND WITH RESPECT TO THE INFORMATION IN THIS PUBLICATION, AND SPECIFICALLY DISCLAIMS IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. USE, COPYING, AND DISTRIBUTION OF ANY DELL SOFTWARE DESCRIBED IN THIS PUBLICATION REQUIRES AN APPLICABLE SOFTWARE LICENSE. Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries. Other trademarks may be the property of their respective owners. Published in the USA. Troubleshooting and getting help 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback