Introduction

This guide describes the integration of the Entrust KeyControl Key Management Solution (KMS) with VMware encryptions solutions, vSAN, and VM encryption. Entrust KeyControl can serve as a KMS in vCenter using the open standard Key Management Interoperability Protocol (KMIP).

Documents to read first

This guide describes how to configure the Entrust KeyControl server as a KMS in vCenter.

To install and configure the Entrust KeyControl server as a KMIP server, see the following documents:

Entrust KeyControl nShield HSM Integration Guide. You can access it from the Entrust Document Library and from the nShield Product Documentation website.
KeyControl with VSAN and VMware vSphere VM Encryption.

Also refer to the following documents in the VMware online documentation:

Using Encryption in a vSAN Cluster.
Virtual Machine Encryption.

Product configuration

Product	Version
VMware vSphere	7.0, 8.0
KeyControl	10.0

Product

Version

VMware vSphere

7.0, 8.0

KeyControl

10.0

Requirements

Entrust recommends that you allow only unprivileged connections unless you are performing administrative tasks.