Integration with CipherTrust Manager
Perform the following steps to integrate HPE StoreEver with the CipherTrust Manager:
Log in to the StoreEver console using the security user.
Navigate to Configuration >> Encryption >> KMIP Wizard.
Click Next. The Certificate Authority Information screen displays prerequisites for using the KMIP certificate. When the prerequisites are met, click Next.
The Certificate Authority Certificate Entry screen displays instructions for obtaining the certificate for the KMIP server. Follow the instructions to copy the certificate from the management console. Paste the certificate into the wizard and then click Next.
The Library Certificate Information screen displays information about the next wizard steps. Click Next.
The KMIP Client Configuration screen provides options for two types of server authentication.
When the KMIP server uses a client username and password for authentication, enter the username and password that were specified on the KMIP management console for the library.
When the KMIP server uses only certificate passing for authentication, select Enable KMIP Certificate-only authentication.
Select Enable KMIP Certificate-only authentication option only if it is required and a client's username and password is not available.
Click Next.
The Certificate Generation screen displays the current library certificate, if one exists.
To use the current certificate, select Keep Current Certificate and then click Next.
To generate a new certificate, select Generate New Certificate. The wizard will generate and display a new library certificate. Click Select Certificate to copy the new certificate text and then click Next.
When selected Generate New Certificate, the Sign Library Certificate screen displays the new certificate for the library. Sign the new library certificate with the certificate authority as a client certificate, paste the new KMIP certificate in the box, and then click Next.
In the KMIP Server Configuration screen, enter the IP address or fully-qualified hostname and port number for up to ten KMIP servers. To verify access to the KMIP servers, click Connectivity Check.
In the KMIP Partition Enablement screen, select KMIP Enabled to configure partitions for use with KMIP, and then click Next.
The Setup Summary screen displays the settings that were collected by the wizard. Verify that the settings are correct and that there are no errors in the Done column. To modify any settings or fix any issues, either click Back to reach the applicable screen or cancel out of the wizard to fix the issues and return later.
If the settings are correct and there are no errors, click Finish.
