Installing CT-VL on Alibaba Cloud
Installation Prerequisites
Following are the prerequisites for installing CT-VL on Alibaba Cloud:
Minimum recommended settings for CT-VL instance are 4 CPUs and 16GB memory.
If you want to create a cluster of CT-VL machines, it is recommended that cluster nodes should use a Virtual Private Cloud (VPC) so that they communicate only with each other within the private cloud. Cluster communication does not need to be exposed to the Internet.
If you choose to use a VPC, you will need to create a subnet and associate that subnet to that VPC. This subnet is where your CT-VL cluster nodes will get the IP addresses.
Set your security group with the following minimum settings:
Incoming port 443: Web and REST API access.
Incoming port 22: CLI access.
Incoming port 5432: Optional. Set this only if the nodes in CT-VL cluster are not using a VPC to communicate with each other.
Optional: Create your own CT-VL Alibaba Image
You may create your own CT-VL Alibaba image and use that to create a CT-VL instance (VM). To create your own CT-VL image, upload CT-VL QCOW2 image file to your OSS storage, and then launch Import Image task.
CT-VL Alibaba image can be created:
Using WebUI
Following are the steps to create CT-VL Alibaba image using WebUI:
Log in to OSS Console.
Create a bucket repository if you have not done so.
Navigate to your OSS bucket.
Select Upload to upload
CT-VL QCOW2image file.Log in to ECS Console and navigate to Instances > Images.
Select Import Image Manually.
Supply the following image information:
OSS Object Address: File URL from OSS storage.
Image Name: ctvl-2.6.7.21.
Operating System: Linux.
System Disk Size: 85GB.
System Architecture: x86_64.
Platform: Other Linux.
Image Format: QCOW2.
License Type: BYOL.
Image Description: CipherTrust Vaultless Tokenization.
Note
Do not select platform other than "Other Linux".
Do not change the System Disk Size (85GB).
Using CLI
Following are the steps to create CT-VL Alibaba image using CLI:
Upload
CT-VL QCOW2image file to Alibaba Object Storage.Example:
$ ossutil64 cp ctvl-2.6.7.21.qcow2 oss://ct-vl/builds/Import image.
Example:
$ aliyun ecs ImportImage \ --RegionId us-west-1 \ --Description "CipherTrust Vaultless Tokenization" \ --ImageName "ctvl-2.6.7.21" \ --LicenseType BYOL \ --DiskDeviceMapping.1.Format QCOW2 \ --DiskDeviceMapping.1.DiskImageSize 85 \ --DiskDeviceMapping.1.OSSObject "builds/ctvl-2.6.7.21.qcow2" \ --DiskDeviceMapping.1.OSSBucket "ct-vl" \ --Architecture x86_64 \ --OSType Linux \ --Platform 'Others Linux'Note
Do not change the System Disk Size (85GB).
Sample Output Response:
{ "ImageId": "m-rj9dwoc45p5gxvyfw812", "RegionId": "us-west-1", "RequestId": "9EFC096A-AB3F-3373-AC67-91C19915C003", "TaskId": "t-rj9dwoc45p5gxvybupew" }
Create a CT-VL Instance (VM)
Following are the steps to create a CT-VL instance (VM) using a CT-VL image shared by Thales Customer Service Support or your own imported image from CT-VL QCOW2 image file:
Log in to Alibaba Cloud and go to Elastic Compute Service.
Select a Region. For example: Singapore, US (Silicon Valley).
Select Create Instance.
Select a Billing Method. For example: Subscription or Pay-As-You-Go.
Select Zone. For example: Zone A or Zone B.
Select an Instance Type:
Architecture: x86-Architecture.
Category: General Purpose or Compute Optimized.
Instance Type:
Minimum: 4 CPUs, 16GB Memory.
Recommended: 8 CPUs, 32GB Memory.
Select Quantity.
- Minimum: Two instances for a 2-node cluster.
Select Image.
For image you created from
CT-VL QCOW2image file , select Custom.For image shared by Thales Customer Service Support, select Shared Image and look for CT-VL.
Select Storage.
Enhanced SSD or Standard SSD.
Use 85GB as shown (DO NOT CHANGE).
Optional: Release with Instance or Disk Encryption.
Select Network Type: VPC.
Optional: Select Public IP Address: Assign Public IPv4 Address.
Select Security Group. Security group must allow SSH and HTTPS access.
Select Logon Credentials: Set Later.
Note
Key Pair is currently not supported. If you select Key Pair, it will be ignored.
Provide Instance Name.
Select Create Instance.
