VMware vSAN
This integration is applicable for vSAN and vmCrypt.
This document details the necessary steps to configure and integrate VMWare vSAN with CipherTrust Manager(CM).
vSAN is a VMware storage virtualization software that offers a mechanism to encrypt the virtual machine in place and in transit. The CipherTrust Manager is used to provide a key to the virtual machine and vSAN to enable the encryption.
Supported Product Version
This integration is validated on the following software versions:
CipherTrust Manager
- CipherTrust Manager 1.8 and higher
VMware
vSphere 6.5 (u1,u2)
vSphere 6.7 (u1, u2, u3)
vSphere 7.0 (u1)
vSphere 8.x
For version compatability, you can also refer VMware Compatibility Guide.
Key Management Interoperability Protocol (KMIP)
- KMIP 1.1 and higher
Prerequisites
vSAN communicates with CipherTrust Manager via KMIP interface. Ensure that CipherTrust Manager is installed and configured properly. For more details, refer to the Administrator Guide of CipherTrust Manager.
vSAN is a VMWare storage virtualization software that offers mechanism to encrypt the virtual machine in place and in transit. Ensure that:
CipherTrust Manager recognizes only registered KMIP clients. Ensure that KMIP client is registered. Refer KMIP client Registration for more details.
Ensure that the required licenses are activated. For more details, refer to the CipherTrust Manager documentation.
For more information on VMWare vSAN refer to the VMWare documentation.
Steps for Integration
To integrate vSAN with the CipherTrust Manager: