About cookies on this site Our websites require some cookies to function properly (required). In addition, other cookies may be used with your consent to analyze site usage, improve the user experience and for advertising. For more information, please review your options. By visiting our website, you agree to our processing of information as described in IBM’sprivacy statement. To provide a smooth navigation, your cookie preferences will be shared across the IBM web domains listed here.
End of Support for KMIP for VMware for Key Protect
Key Management Interoperability Protocol (KMIP™) for VMware® support for Key Protect will end on 16 July 2026, after which interoperability with the Key Protect service will no longer work. Migrate to IBM® Key Protect for IBM Cloud®.
Support for Key Protect service as part of the Key Management Interoperability Protocol (KMIP™) for VMware® will end on 16 July 2026 after which the service will no longer be available. You must migrate to the native IBM® Key Protect for IBM Cloud® offering, or an alternative key management service of your choice by 16 July 2026.
This announcement is applicable only to customers who are using the KMIP for VMware support for Key Protect. Customers who are using KMIP for VMware support for Hyper Protect Crypto Services (HPCS) remain unaffected by this announcement. The KMIP for VMware support for HPCS continues to function as usual without any impact.
If you are using the KMIP for VMware support for Key Protect, you must plan and start migration to IBM® Key Protect for IBM Cloud® services at the earliest.
The new key provider offering, IBM® Key Protect for IBM Cloud®, has the following advantages over the KMIP for VMware adapter:
- Improved performance because the calls from KMIP to key provider are closer in network distance and no longer cross the service-to-service authorization boundaries.
- Improved visibility and management for the KMIP keys.
- No change in pricing.
To experience an improved performance at no additional cost, you must migrate to IBM® Key Protect for IBM Cloud® from KMIP for VMware service. For more information about KMIP migration, see Migrating from KMIP for VMware to IBM Cloud native KMIP providers.
Customers who are using vSphere version 7.x can encounter a Broadcom bug in vSphere HA that results in restart of virtual machines with vSphere encryption during the rekeying process. However, Broadcom provides a workaround for this issue. For more information about the workaround, see Encrypted VM with Change Block Tracking (CBT) enabled unexpectedly powers off after shallow rekey operation.
For more information about end of life procedures for IBM Cloud infrastructure services and third-party software products, see Lifecycle policy for IBM Cloud products. If you have any questions or need assistance, send an email to clouddigitalsales@us.ibm.com, or open a support ticket in the VMware Solutions console.