Update configuration for CipherTrust Manager through EM
To enable applications and servers in the enterprise to interact with the Key Management Server, complete this procedure.
Before you begin
Install and configure a Key Management Server before completing this procedure.
Make sure the SSL is enabled and configured in the Enterprise Manager (EM).
Procedure
-
In WFO, go to System Management. Under Enterprise, select Settings.
-
In the Installations tree (left pane), select the Enterprise node.
-
Select Security.
-
In the Encryption Management section, select the KMS Server Type as Thales CipherTrust.
Complete the fields identifying the Primary Key Management Server, Domain (usually the same name after the migration), User Name and Password based on the following details:
Primary Key Management Server (and Secondary Key Management Server for HA): Type the host name, fully qualified domain name (FQDN), or IP address of the Primary (and Secondary for HA) CipherTrust KMS.
Domain: Enter the name of the Domain configured in Thales CipherTrust KMS => should set to "RecorderDomain" as the Thales KMS 6.4.7.
User Name: Enter the username created on CipherTrust for configured domain.
Password: The password for the configured user.
Encryption Key Class: Set to "Recorder".
-
Save the configuration.
What to do next
Configure the Key Management Server settings (Enterprise Manager Configuration and Administration Guide)