Integrate Entrust KeyControl with Veeam Backup & Replication

Follow these steps to register Entrust KeyControl as a KMS in Veeam Backup & Replication. For more detail on how to do this, see Adding a Key Management Interoperability Protocol Server in the Veeam Backup & Replication online documentation.

  1. Select Windows Start / Veeam / Veeam Backup & Replication Console.

  2. Login with the Windows credentials.

  3. Select the menu icon the top left Credentials & Passwords / Key Management Servers.

    key management servers

  4. Enter the Server Name. Ensure that the default Port number is set to 5696.

    add kms server

  5. Browse and add the Server certificate cacert.pem created in deploy-entrust-kc.adoc#create-client-cert-bundle. Choose Import certificate from a PEM file in Certificate Type.

    certificate type

  6. Select Next and Finish.

    import server certificate

  7. Browse to add the Client certificates. Choose Import certificate from a PEM file in Certificate Type.

  8. Import the cert.pem and keypkcs1.pem created in deploy-entrust-kc.adoc#create-client-cert-bundle. Then select Next and Finish.

    import client certificates

  9. Select OK to verify the KMS server is validated.

  10. Add the other nodes in the cluster following the steps above.

    kms validated