Requirements for key migration from Thales DSM to CipherTrust Manager
To migrate keys successfully from Thales Vormetric Data Security Manager (DSM) to CipherTrust Manager, make sure to meet these requirements.
Required servers and workstations
Migration involves the following servers and workstation:
-
A server running Thales Vormetric Data Security Manager (DSM) 6.4.7
If Thales DSM is an earlier version, upgrade to v 6.4.7.
-
A server running CipherTrust Manager KMS 2.19.0
-
A Windows or Linux workstation that:
- Has the CipherTrust CLI toolkit (ksctl).
- Is accessible by both servers.
Required data
To run the Key Migration Tool successfully, you must have the following details available:
|
Data |
Description |
|---|---|
|
Thales DSM server address |
The host name or IP address of the server that hosts the Thales Key Management Service and from which keys are being exported. |
|
Thales DSM Administrator Credentials |
Two system administrator users and their credentials are available. |
|
Thales DSM user name |
The user name for the Security Administrator profile to the Thales KMS. |
|
Thales DSM password |
The password associated with the Security Administrator profile for the Thales KMS. |
|
CipherTrust Manager server address |
The host name or IP address of the server that hosts the CipherTrust Key Management Service and to which keys are being imported (migrated). |
|
CipherTrust Manager Admin User |
The root admin credentials for CipherTrust. |
Workflow: Export keys from Thales KMS
Upgrading from Thales KMS Earlier Versions Thales KMS 6.4.7 Installation and Configuration Guide