Tag: Trusted Platform Module

Hosting a KMS on the encrypted VxRail cluster, with Key Persistence

In my previous post (VxRail cluster encryption with the vSphere Native Key Provider) I spoke about how to encrypt your VxRail cluster with the vSphere Native Key Provider that was introduced in vSphere 7.0 U2.

It is a great feature and the post shows how easy it is to set it up and use it to encrypt your cluster. However… what if you do need more functionality, that only a Key Management Server (KMS) can offer? Oh, and I don’t want to spend more cost on an extra host (outside my cluster) to host the KMS appliance? I can’t put it on the actual cluster itself, that it is providing the encryption keys for! Or can I …?

Continue reading “Hosting a KMS on the encrypted VxRail cluster, with Key Persistence”
0

VxRail – Secure Boot and attestation

Security is a key focus these days. For the security conscious customers, you can even configure your VxRail nodes so that upon booting up, they will verify the components that are involved in the boot process, to ensure that they are not tampered with. This post explains the Secure Boot process and how this is handled by VxRail.

Continue reading “VxRail – Secure Boot and attestation”
4

Blog at WordPress.com.

Up ↑

Design a site like this with WordPress.com
Get started