Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
  • CipherTrust Manager
  • CipherTrust Application Data Protection (CADP)
  • CipherTrust Application Key Management (CAKM)
  • CipherTrust Batch Data Transformation (BDT)
  • CipherTrust Cloud Key Management (CCKM)
  • CipherTrust Data Discovery and Classification (DDC)
  • CipherTrust Data Protection Gateway (DPG)
  • CipherTrust Database Protection (CDP)
  • CipherTrust Intelligent Protection (CIP)
  • CipherTrust Integrations
  • CipherTrust Migrations
  • CipherTrust RESTful Data Protection (CRDP)
  • CipherTrust Transparent Encryption (CTE)
  • CipherTrust Transparent Encryption Userspace (CTE-U)
  • CipherTrust Secrets Management (CSM)
  • CipherTrust Vaulted Tokenization (CTE-V)
  • CipherTrust Vaultless Tokenization (CT-VL)
  • CTE-Linux
  • CTE-Windows
  • CTE-AIX
  • CTE-K8s
  • CTE-U
  • Data Protection on Demand
  • Luna Cloud HSM
  • Luna Network HSM
  • Luna PCIe HSM
  • Luna USB HSM
  • OneWelcome Identity Platform
  • ProtectApp LUKS
  • ProtectServer 2 HSM
  • ProtectServer 3 HSM
  • SafeNet Trusted Access (STA)
  • SafeNet MobilePASS+
  • SafeNet MobilePASS+ for Android
  • SafeNet MobilePASS+ for Chrome
  • SafeNet MobilePASS+ for macOS
  • SafeNet MobilePASS+ for iOS
  • SafeNet MobilePASS+ for WatchOS
  • SafeNet MobilePASS+ for Widows
  • SafeNet Synchronization Agent
  • SafeNet Logging Agent
  • SafeNet Agent for FreeRADIUS
  • SafeNet Agent for NPS
  • SafeNet Agent for Windows Logon
  • SafeNet Authentication Service Private Cloud Edition (SAS PCE)
  • SafeNet Remote Logging Agent
  • SafeNet Keycloak Agent
  • SafeNet IDPrime Virtual (IDPV)
  • SafeNet FIDO Key Manager
  • SafeNet FIDO Key Manager for Android
  • SafeNet FIDO Key Manager for iOS
  • SafeNet FIDO Key Manager for Windows
back

Clusters

search

Please Note:

print

Clusters

copy link to clipboardPrerequisites

Coordinate with the client administrator to ensure the following:

  • The shared mounted location to protect exists on all clients.

  • Refer to "File Systems" in the CipherTrust Transparent Encryption UserSpace Release Notes for the list of file systems for which CipherTrust Transparent Encryption UserSpace supports the active-active or active-passive cluster configuration on cluster nodes running supported platforms.

  • Make sure the following are installed on all SLES 11 SP4 clients that will from the cluster:

    • SUSE Linux Enterprise Server 11 SP4 with all available online updates

    • SUSE Linux Enterprise High Availability Extension 11 SP4 (OpenAIS) with all available online updates

  • Make sure that the following cluster packages are installed on all RHEL 6 and RHEL 7 nodes that will from the cluster:

    PackageRHEL 6RHEL 7
    Red Hat Enterprise Linux High Availability (for RHEL X Server)rhel-ha-for-rhel-6- server-rpmsrhel-ha-for-rhel-7- server-rpms
    Red Hat Enterprise Linux Resilient Storage (for RHEL X Server)rhel-rs-for-rhel-6- server-rpmsrhel-rs-for-rhel-7- server-rpms

Refer to RHEL HA Installation for details.

copy link to clipboardCreating a Cluster

When creating a cluster, specify the name for the cluster and the encryptor client for the Linux cluster (for a cluster of clients running Linux).

The following table lists the parameters that are required when creating or managing a cluster on the CipherTrust Manager:

ParameterDescription
NameFriendly name for the cluster. The cluster will be identified by this name on the CipherTrust Manager. This field is mandatory.
Encryptor ClientName of the client that will perform encryption of data shared among clients in the cluster. If an encryptor client is not specified, data on the clients in the cluster cannot be encrypted. However, you can modify the cluster to specify the encryptor client later.
This document, may at times, abbreviate "encryptor client" to encryptor.
Cluster OS TypeOperating system running on all clients that will from the cluster. Specify Linux for CTE UserSpace. The default operating system is Windows.

CTE UserSpace provides options to view existing clusters, view and modify their details, and delete them when they are no longer required.

copy link to clipboardLinking a Client with a Cluster

After a cluster is created, clients can be added to it to complete the cluster. This is called cluster-client association. Each client in the cluster must be registered with the CipherTrust Manager.

In a cluster, encryption rules are deployed on paths shared among all clients in the cluster. The encryptor client specified during the creation of a cluster is automatically linked to the cluster.

CTE UserSpace provides options to view the list of clients linked with a cluster.

On this page