Please Note:

Getting Started
CipherTrust Manager Deployment
- Hardening Guidelines
- Install Virtual CipherTrust Manager
  - Plan Configuration Settings for Cloud Init
  - Deploying with Cloud-init
  - Amazon Web Services Deployment
  - Google Cloud Deployment
  - Alibaba Cloud Deployment
  - Microsoft Azure Deployment
  - Microsoft Azure Stack Deployments
  - Microsoft Azure Dedicated HSM Provisioning
  - Oracle Cloud Deployment
  - Private Cloud Deployment
  - Resizing the Virtual Hard Disk After Deployment
- Install Physical CipherTrust Manager Appliance
  - Securely Transporting a CipherTrust Manager k570 Appliance
  - Remote PED-Authenticated k570 Initialization
  - Backing Up k570 Root of Trust Keys
  - Hardware Specifications
  - HSM Tamper Behavior
  - Reboot the Appliance
  - Power Supply and Fan Maintenance
  - Serial Connections
  - Front Locking Bezel
- Network Configuration Tutorial
  - Planning Network Configuration
- Install the CLI Toolkit
- Changing the Initial Password
- Network Time Protocol Server Configuration
- Starting Services After Deployment
- System Configuration Utility
- Resetting a CipherTrust Manager
Licensing
- Trial Evaluation
- Accessing the License Portal
- Activating Licenses
- Managing Licenses
- View and Delete Licenses on CipherTrust Manager
- Migrating Licenses from Legacy Appliances
- Recovering Licenses after Redeployment
- Virtual CipherTrust Manager Licensing Model
- CCKM Licensing Model
- CTE Licensing Model
- CTE UserSpace Licensing Model
- DDC Licensing Model
- KMIP Licensing Model
- ProtectFile Licensing Model
- Data Protection Gateway Licensing Model
- RESTful Data Protection Licensing Model
- CDP for Teradata VCL Licensing Model
DDC Deployment
- Architecture
- Requirements
- Post-install
- DDC Agents
- Hardening Guidelines
TDPaaS Deployment
Migrate from KeySecure Classic
Migrate from Data Security Manager
Migrate KMIP Managed Objects from Data Security Manager
Migrating ProtectFile to CTE Agent

CipherTrust Manager
Getting Started
TDPaaS Deployment

TDPaaS Deployment

Thales Data Platform as a Service (TDPaaS), also referred to as Data Management Service, is a SaaS component and an alternative to the Hadoop Services offered by on-prem Thales Data Platform (TDP). TDPaaS is server-less and eliminates the need for manual administration and management of the services. It can be used for PoCs in conjunction with DDC.

Caution

This feature is a technical preview for evaluation in non-production environments. A technical preview introduces new, limited functionality for customer feedback as we work on the feature. Details and functionality are subject to change. This includes API endpoints and UI elements. We cannot guarantee that data created as part of a technical preview will be retained after the feature is finalized.

Prerequisites

Ensure that your instance can connect to https://us.tdpaas.dpondemand.io over the standard HTTPS port 443.
(Recommended) Whitelist the URL to facilitate communication with TDPaaS without issues.

Regions

TDPaaS is a cloud-based service for which you must choose a region to save the scan and report data. It is advised to select the region based on the proximity and sovereignty requirements.

Note

Currently, only the us-central1 region is available.

Configuring DDC for TDPaaS

For configuring TDPaaS, you don't need to add any external connections or configure any settings.

To configure your CipherTrust Manager instance with TDPaaS:

Log in to CipherTrust Manager.
Go to Data Discovery and Classification > Settings > Data Management Service tab.
Select a region from the Region dropdown.
Note
Region cannot be modified once the TDPaaS is configured. It is advised to choose the region based on the proximity and sovereignty requirements.
Click Get Credentials.
The credentials are generated and saved with the CipherTrust Manager to be used by Data Discovery and Classification. A unique Customer ID is created corresponding to the current CipherTrust Manager instance.
Click the Download Credentials button to download and save the credentials for future use.
Caution
It is recommended to store the TDPaaS credentials in a secure location.
These credentials are essential for re-establishing the TDPaaS connection if settings are corrupted or lost. To restore the connection, you must upload the downloaded credentials when prompted by CipherTrust Manager. Without the credentials, restoring TDPaaS connection is not possible.

For troubleshooting errors when working with TDPaaS, refer to Troubleshooting section.

Suggest A Change

TDPaaS Deployment

Prerequisites

Regions

Configuring DDC for TDPaaS

On this page