Integration with KeySecure
This section outlines the steps to install and integrate Thycotic Secret Server (TSS) with KeySecure.
Integrate Thycotic Secret Server with KeySecure
To verify the successful installation of Thycotic Secret Server, open Windows Administrative Tools from the start menu, and navigate to Internet Information Services (IIS) Manager. Ensure that Secret Server is displayed under Server Name > Sites > Default Web Site.
Create a new local windows account and assign Admin privileges to it.
Navigate to the Internet Information Services (IIS) Manager to associate the newly created Windows account to the Secret Server Application Pool. To do so:
a. Click on Application Pools > SecretServer > Advanced Settings.
b. Navigate to the Process Model in the pop-window that appears, and click on icon adjacent to the ApplicationPoolIdentity.
c. In the subsequent pop-up that appears, click User Account > Set.
Specify the details in the newly created Windows Account, and click OK.d. Verify that the parameter value corresponding to the Load User Profile is set to True. Click OK and close the IIS window.
Navigate to http://localhost/secretserver in any standard browser and enter the admin credentials , and click on Login.
Switch to Classic UI and click on Admin > Licenses.
Enter the License to Activate HSM Integration functionality.
Click on Install New License, specify the License details and click Save.
Click on License Activation to activate the License.
After completing the online activation, click on Continue and navigate to Admin > Configuration.
Navigate to HSM tab and click on Enable HSM.
On the following page, click Next to proceed.Select the Safenet Provider from the list of Persistent Providers, and click Next.
Verify that all test are successful, and click Next to continue.
Click Save.
Click Finished at the end of the HSM configuration.
Go to the IIS and recycle the Secret Server Application Pool. To do so:
a. Under Name column, select SecretServer.
b. Under Actions pane in the right sidebar, click Recycle.
Go back to the HSM Configuration page and confirm your settings are configured.
Integration with Thycotic Secret Server is now complete.