IBM Cloud Docs
Entrust KeyControl on IBM Cloud overview

Entrust KeyControl on IBM Cloud overview

New installations of Entrust KeyControl™ (formerly HyTrust KeyControl) are not supported for new or existing deployments of VMware Cloud Foundation for Classic - Automated instances. You can still use or delete existing Entrust KeyControl installations on your existing instances.

Entrust KeyControl on IBM Cloud® simplifies the management of encrypted workloads. This service automates and simplifies the lifecycle of encryption keys, including key storage, key distribution, key rotation, and key revocation. Using FIPS 140-2 compliant encryption, enterprises can easily manage encryption keys at scale. Entrust KeyControl on IBM Cloud is a non-IBM product that is offered under terms and conditions from Entrust, not IBM.

Previous installations of Entrust KeyControl 5.0.1 are supported for VCF for Classic - Automated with NSX-V instances.

Technical specifications for Entrust KeyControl

The following components are included in your existing Entrust KeyControl service:

Entrust KeyControl appliance

  • CPU - 2 CPU
  • RAM - 8 GB
  • Disk - 20 GB VMDK resident on vSAN in the consolidated cluster
  • Network - Placed on a VLAN-backed private portable network specified for management

High availability

Two KeyControl appliances in an active-active clustered configuration.

Optionally, you can specify to deploy two KeyControl appliances in a stand-alone unclustered configuration.

Licenses and fees

An Entrust KeyControl license for each instance installation.