Your suggested change has been received. Thank you.

Suggest A Change

Thank you! Your suggestion has been submitted.

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

There are some errors in your form.

Your Name This field is required

Your Email This field is required

How can we improve this content? This field is required

Free Registration
- Explore Thales Docs

Accounts
Services
Technical Resources
DPoD APIs

All

All

Key Broker for Google Cloud EKM

Service Guide

Services
Luna Cloud HSM Services
Luna Cloud HSM Service Integrations
CipherTrust Key Management Services
- Key Broker for Salesforce
  - Adding a Key Broker for Salesforce Service
  - Managing a Key Broker for Salesforce Service
  - Setting a Rotation Policy
  - Migrating Key Broker for Salesforce to CipherTrust Data Security Platform as a Service
- Key Broker for Google Cloud EKM
  - Service Guide
  - Key Setup Guide
  - Key Use Guide
  - Frequently Asked Questions
  - Migrating Key Broker for Google Cloud EKM to CipherTrust Data Security Platform as a Service
- CipherTrust Data Security Platform as a Service
payShield Cloud Services
- payShield Cloud HSM Service
  - Service Overview
  - Prerequisites
  - Getting Started
    - payShield Cloud HSM Configuration/Subscription Options
    - How to Subscribe to the payShield Cloud HSM Service
  - Service Specifications
  - Connecting to the payShield Cloud HSM Service
    - Azure Connection Guide
    - GCP Connection Guide
    - AWS Connectiontion Guide
  - Service Provisioning from DPoD Platform
    - Trial Tier Provisioning
    - Production Tier Provisioning
    - View Sevice Status
  - HSM Management using payShield Manager
    - Preparing for HSM Commission
    - Steps to Commission payShield Manager
    - Adding Another HSM to the Security Domain
    - Transitioning between HSM States via payShield Manager
    - Viewing Network Interfaces in payShield Manager
  - HSM Deprovisioning
  - APPENDIX A - Glossary
  - APPENDIX B - DPoD Errors
- Point-to-Point Encryption
  - Adding a Point-to-Point Encryption Service
  - Using the service
  - P2PE CLI
    - p2pe key
    - p2pe service
    - p2pe tls
  - P2PE REST API
  - P2PE errors
  - Service Details
  - Frequently Asked Questions
Partner Services

Was this document helpful? Yes No

Feedback Sent!

If you like, you can provide additional feedback.

DPoD Documentation
Services
CipherTrust Key Management Services
Key Broker for Google Cloud EKM
Service Guide

Service Guide

This guide provides instructions on adding the Key Broker for Google Cloud EKM service to Google Cloud EKM. Once you have added the service to Google Cloud EKM, and can access the Key Broker for Google Cloud EKM page, refer to the Key Setup Guide for detailed instructions on adding your master key.

The Key Broker for Google Cloud EKM service requires a unique DPoD tenant. Register for a service tenant by subscribing to the service through the Google Cloud Marketplace. The DPoD tenant account is used for registration and authentication of the Key Broker for Google Cloud EKM service with the service back end. You cannot use an existing tenant.

You require a DPoD subscriber tenant to provision a CipherTrust Data Security Platform service. See Register a Subscriber Tenant for more information about creating a DPoD subscriber tenant.

This document provides detailed instructions on:

Registering for the service
Removing the service

Registering for the service

Register for the service through the Google Cloud Marketplace. Select a region that is geographically near your Google Cloud Platform to reduce network latency issues between your Google Cloud Project and Key Broker for Google Cloud EKM service.

Note

To purchase SaaS products, you must have the Billing Administrator role for the active billing account, and the Project Editor role for the project that you want to add the service for. See Pricing Plans for SaaS products for more information.

Access the Google Cloud Marketplace and search for the Key Broker for Google Cloud EKM service for your region.
- CipherTrust Key Broker [NA]
- CipherTrust Key Broker [EU]
Click Subscribe. This redirects to an Order Summary page where you can select a plan, define the Purchase details, and agree to the service Terms. Click Subscribe again.

Register with the Thales Data Protection on Demand region that is geographically near your Google Cloud Platform. Select:
- REGISTER WITH THALES - NORTH AMERICA - OTTAWA
- REGISTER WITH THALES - EUROPEAN UNION - FRANKFURT
Complete the service tenant registration. When you register your service you will be given access to a DPoD tenant. See About the Automated Tenant Registration Page for more information.

Record the DPoD tenant login URL. The DPoD tenant log in URL is required to log in to the Key Broker for Google Cloud EKM service page. The DPoD tenant log in URL is structured based on the region.
- NA: https://<hostname>.uaa.system.snakefly.dpsas.io/login
- EU: https://<hostname>.uaa.system.pegasus.dpsas.io/login
After you register the service you are redirected to the Key Broker for Google Cloud EKM service page for your region. You must submit the DPoD tenant log in URL and your user account credentials to log in to the service.

Removing the service

Remove the service through the Google Cloud Marketplace.

Find and select the service listing in the Google Cloud Marketplace.
- CipherTrust Key Broker [NA]
- CipherTrust Key Broker [EU]
Click Cancel auto-renewal to put the service into the cancellation state. The service will expire and billing will terminate at the very start of the next month.

On this page

DPoD Documentation

© Copyright 2019-2024, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com

Services
Support
Legal

© Copyright 2019-2024, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com