Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

ProtectV Administration

Managing Images

search

Please Note:

Managing Images

Registered ProtectV images can be managed on the CipherTrust Manager console. Managing images includes viewing the list of registered images, viewing their details, and viewing the number of their running instances. Information such as whether the images are authorized for keys and whether their new clones will be granted keys automatically is also displayed.

ProtectV Dashboard

Viewing Registered Images

To view registered images:

  1. Log on to the CipherTrust Manager GUI.

  2. Open the ProtectV application. The Images page is displayed on the right.

    ProtectV Images

    The Images page shows the list of registered images. The images are arranged in descending order of their registration time. The newly registered image is listed at the top. The page also shows the following details:

    ItemDescription
    NameName of the ProtectV Client image.
    EnabledDisplays whether an image is authorized for key. If ON, then only partitions of instances based on this image will be encrypted.
    AutoscaleDisplays whether new clones of the image will be granted keys automatically. By default, autoscaling is turned OFF. New clones of the image will not be granted keys automatically.
    Instance CountNumber of running instances of the image. By default, the instance count is 1. This means that the registered image itself is the first instance of the image.
    AlertsAlerts that the disk associated with the image will not be granted a key unless both the instance and the parent image are authorized/enabled. A red bell (Alert Red) icon next to an image indicates an alert that requires a ProtectV administrator's attention.
    Expand Icon (Expand)Displays the Date Created field. This field shows the date and time of the image creation. The icon turns to the Collapse icon (Collapse). Click it to hide the date and time of image creation.
    Overflow Icon (Overflow)Displays additional information.

Unauthorizing an Image for Key

By default, an image is authorized for encryption keys. Encryption keys are available to them for decrypting data. However, if needed, you can unauthorize the image for encryption keys. It may be helpful in eliminating security risks arising from unauthorized cloning of images. For example, if you suspect that an image is cloned maliciously and stored data can be compromised, you can unauthorize such cloned images for encryption keys. The data stored on such clones remains encrypted/inaccessible until they are authorized for encryption keys.

To unauthorize an image for encryption keys:

  1. Log on to the CipherTrust Manager GUI.

  2. Open the ProtectV application. The Images page is displayed on the right. The following image shows that the image is authorized for encryption keys.

    ProtectV Images

  3. For the desired image, click the Enabled toggle switch to turn it OFF. This unauthorizes the image for encryption keys.

    Unauthorize encryption keys

Authorizing an Image for Key

By default, an image is authorized for encryption keys. If its authorization is disabled, the ProtectV administrator can turn it on.

To authorize an image for encryption keys:

  1. Log on to the CipherTrust Manager console.

  2. Open the ProtectV application. The Images page is displayed on the right. The following image shows that the image is unauthorized for encryption keys.

    Unauthorize encryption keys

  3. For the desired image, click the Enabled toggle switch to turn it ON. This authorizes the image for encryption keys.

    ProtectV Images

Enabling Autoscaling for an Image

By default, autoscaling of an image is turned off. Clones of the image (also known as image instances) are not granted encryption keys for decrypting data. However, if needed, autoscaling for an image can be enabled. When enabled, encryption keys will be granted to image instances automatically.

Note

Even if autoscaling for an image is turned off, its instances can be granted encryption keys individually. It can done by clicking the Authorized toggle switch on the Instances page.

To enable autoscaling of an image:

  1. Log on to the CipherTrust Manager GUI.

  2. Open the ProtectV application. The Images page is displayed on the right.

    ProtectV Images

  3. For the desired image, click the Autoscale toggle switch to turn it ON. This enables autoscaling of the image.

    Enable autoscale for image

Disabling Autoscaling for an Image

By default, autoscaling of an image is turned off. If its autoscaling is enabled, the ProtectV administrator can disable it. When disabled, encryption keys will not be granted to image instances automatically.

To disable autoscaling of an image:

  1. Log on to the CipherTrust Manager GUI.

  2. Open the ProtectV application. The Images page is displayed on the right.

    Enable autoscale for image

  3. For the desired image, click the Autoscale toggle switch to turn it OFF. This disables autoscaling of the image.

    ProtectV Images

Viewing Instances of an Image

To view instances based on an image:

  1. Log on to the CipherTrust Manager GUI.

  2. Open the ProtectV application. The Images page is displayed on the right.

    ProtectV Images

  3. Under Name, click a link to view running instances of the image.

    Alternatively, click the overflow (Overflow icon) icon corresponding to the desired image and click List Instances.

    List Instances

    Note

    If there are any instances based on an image, the overflow (overflow icon) icon is replaced by the List Instances button. The Delete option is available for images that have no instances based on them.

    The Instances page with details similar to the following is displayed.

    Running instances

This page lists the running instances of the selected image.

On this page