vmsec Utility
The vmsec
utility allows you to manage the security aspect of the CTE Agent on the host. On Windows the vmsec
utility is <windows-agent-install-dir>\vmd\bin\vmsec.exe
. The default path is:
C:\Program Files\Vormetric\DataSecurityExpert\agent\vmd\bin\vmsec.exe
vmsec Syntax
check_install |
Verifies that the kernel component is running. This command checks CTE services and reports if any of the services are not running. |
challenge |
Initiates challenge-response on the host. This command displays a CTE Agent password challenge string and enter the response string when the key manager is not network accessible. |
status |
Displays kernel configuration. |
vmdconfig |
Displays the vmd configuration. |
check_hwenc |
Determines whether this system supports hardware crypto. |
hwok |
Reports status of hardware signature. |
passwd [-p passwd] |
Enters the host password when the key manager is not network accessible. User can unlock the GuardPointswith this password. |
version |
Displays the CTE version. |
Displaying the CTE Challenge String
In addition to using vmsec challenge
on Windows, you can also right-click the tray icon and select Challenge...-> Response. The CTE Challenge/Response window opens.
If no challenge string is displayed, the host password is static. If a challenge string displays, contact a Administrator for the response string.
Using the CTE Challenge String
When communication with the CipherTrust Manager is unavailable, the agent pauses on access to guarded directories. The agent waits for communication to be restored or a challenge/response to be issued and completed. The agent notifies the user of this condition and requests the challenge/response with log messages in dmesg
and vmd.log
in five minute intervals.