Creating Cloud Object Storage GuardPoints
Steps to create GuardPoints on individual clients and client groups are similar. GuardPoints can be created on the GuardPoints tab of individual clients and client groups.
Before proceeding, review the "CTE COS for Amazon S3" section of the CTE Agent for Linux Advanced Configuration and Integration Guide. Make sure to fulfill the COS requirements.
To create a Cloud Object Storage GuardPoint:
Open the Transparent Encryption application.
Select the client or client group on which you want to create a GuardPoint.
Click a client under the Client Name column (Clients > Clients).
Click a client group under the Client Group Name column (Clients > Client Groups).
On the GuardPoints tab, click Create GuardPoint.
Select a Policy. This is a mandatory field.
Click Select next to the Policy field.
Select a Cloud Object Storage policy. If no policy exists, create one, as described in Creating Policies.
Click Select.
Select the Type of device to protect. This is a mandatory field. The options are:
Auto Cloud Storage: Select for Cloud Storage policies.
Manual Cloud Storage: Select for Cloud Storage policies to be guarded manually.
Note
Manual Cloud Storage are guarded and unguarded (for example, mounted and unmounted) by running the
secfsd -guard
andsecfsd -unguard
commands. Do not run themount
andumount
commands to swap GuardPoint nodes in a cluster configuration.Select the Cloud Storage Type. The available option is Amazon S3 Bucket.
Specify the URL of the S3 bucket to be protected. This is a mandatory field. The URL format is
https://s3.amazonaws.com/[bucket_name]
.Click Validate to check whether the S3 bucket exists. The Create GuardPoint - Validate Connection dialog box is displayed.
Enter your AWS account credentials:
Access Key: Key to access the bucket.
Secret Key: Secret key to access the bucket.
Region Code: Code of your AWS region.
URL: S3 bucket URL that you entered (populated automatically).
Click Connect.
Click OK.
Click Create.
Depending on the number of paths you add to a GuardPoint, a status information message may appear. Refer to GuardPoint Status Information for details.
The newly created GuardPoint appears on the GuardPoints tab. The status remains Unknown
until the client sends the response after processing the GuardPoint request. Click the Refresh GuardPoints icon () to view the updated status.
Status of a GuardPoint can be checked at any time on the GuardPoints tab. Refer to Viewing GuardPoint Status for details.