Thycotic Secret Server (TSS)
This document describes how to install, configure, and integrate Thycotic Secret Server (TSS) with CipherTrust Key Management Server (KMS).
TSS is a privileged account management solution designed for IT admins and IT security professionals. TSS enables you to control all the password management-related processes across an enterprise.
Integrating TSS with CipherTrust KMS provides an additional level of security for all the encryption keys of Secret Server. If HSM integration is turned on, encryption key of Secret Server will be secured by HSM, which means that the encryption key will be encrypted using the HSM.
Note
CipherTrust KMS refers to one of the Key Management Servers i.e. CipherTrust Manager or KeySecure.
Supported Product Versions
This integration is validated on the following operating system variant:
Windows
- Windows Server 2016 Standard Edition
CipherTrust KMS
- KeySecure 8.4.3 or higher
CipherTrust Manager
- CipherTrust Manager 1.10 or higher
Thycotic Secret Server
- 10.9.000000
CADP
- CADP CNG Thycotic Alpha
Prerequisites
Ensure that the CipherTrust Manager is installed and configured. For more details, refer to the CipherTrust Manager Documentation.
thycotic communicates with the CipherTrust Manager using the Network Attached Encryption (NAE)-XML Interface. Ensure that the NAE-XML interface is configured. For more details, refer to the CipherTrust Manager Documentation.
Ensure that the port configured on NAE-XML interface is accessible from the Thycotic machine.
Ensure Setting up SSL.
Steps For The Integration
To integrate thycotic with the CipherTrust Manager:
