Install and configure the Entrust KeyControl Vault server

Install the KeyControl Vault server

The Entrust KeyControl Vault server is a software solution deployed from an OVA or ISO image. Entrust recommends that you read the Entrust KeyControl Vault Installation Overview online documentation to fully understand the KeyControl Vault server deployment.

To configure a KeyControl Vault cluster (active-active configuration is recommended), Entrust recommends the use of the OVA installation method, as described in the Entrust KeyControl Vault OVA Installation online documentation.

After the KeyControl Vault server is deployed, configure the first KeyControl Vault node as described in the Entrust Configuring the First KeyControl Vault Node (OVA Install) online documentation.

After completing this procedure, add the second node as described in the Entrust Adding a New KeyControl Vault Node to an Existing Cluster (OVA Install) online documentation to create the recommended active-active cluster.

Although an active-active cluster is not a requirement, and a single KeyControl Vault node can be deployed to perform its functions, Entrust strongly recommends deploying the solution with a minimum of four nodes in an active-active cluster solution.

Your KeyControl Vault license determines how many KeyControl Vault nodes you can have in a cluster. KeyControl Vault requires the deployment of KeyControl Compliance Manager (KCM). KCM manages licenses for the various KeyControl Vaults in the organization. For full information about the KeyControl Vault licensing, see the Entrust Upgrading Your Trial License online documentation.

Configure the KeyControl Vault Server

After the Entrust KeyControl Vault server is deployed and the initial installation is complete, you can configure the network settings, e-mail server preferences and cluster. For these procedures, see the KeyControl System Configuration in the Administration Guide.