Black Box ET0010A User Manual
Managing Key Management Systems
156
EncrypTight User Guide
In order to ensure network resiliency, some EncrypTight configurations may have external ETKMSs
installed in pairs: a primary ETKMS and a backup ETKMS. The ETPM distributes the policies to both
the primary ETKMS and backup ETKMS. Only the primary ETKMS distributes the keys and policies to
the PEPs. If a communication failure occurs with the primary ETKMS due to a ETKMS failure or
network failure, the backup ETKMS assumes the generation and distribution of the keys and policies to
the PEPs. Once communication with the primary ETKMS is reestablished, the primary resumes the
distribution of the keys and policies to the PEPs.
installed in pairs: a primary ETKMS and a backup ETKMS. The ETPM distributes the policies to both
the primary ETKMS and backup ETKMS. Only the primary ETKMS distributes the keys and policies to
the PEPs. If a communication failure occurs with the primary ETKMS due to a ETKMS failure or
network failure, the backup ETKMS assumes the generation and distribution of the keys and policies to
the PEPs. Once communication with the primary ETKMS is reestablished, the primary resumes the
distribution of the keys and policies to the PEPs.
CAUTION
Do not add backup ETKMSs as separate appliances in the Appliance Manager in ETEMS. Backup
ETKMSs should only be specified in the Backup IP Address box in the ETKMS editor. Backup ETKMSs
are not listed in the Appliance Manager view. If you add a backup ETKMS to the Appliance Manager, you
can accidentally use it in network sets and policies, which will interfere with the ability of the server to act
as a backup.
ETKMSs should only be specified in the Backup IP Address box in the ETKMS editor. Backup ETKMSs
are not listed in the Appliance Manager view. If you add a backup ETKMS to the Appliance Manager, you
can accidentally use it in network sets and policies, which will interfere with the ability of the server to act
as a backup.
Adding ETKMSs
To add an ETKMS:
1 From the perspective tab, click >> and select Appliance Manager.
2 In the Appliance Manager, select File > New Appliance.
3 Select Product Family > ETKMS and Software Version ETKMS n.n where n.n is the appropriate
1 From the perspective tab, click >> and select Appliance Manager.
2 In the Appliance Manager, select File > New Appliance.
3 Select Product Family > ETKMS and Software Version ETKMS n.n where n.n is the appropriate
ETKMS version.
If you want to add a local ETKMS, select ETKMS LM and the appropriate software version. Enter
the ETKMS properties in the ETKMS appliance editor as described in
If you want to add a local ETKMS, select ETKMS LM and the appropriate software version. Enter
the ETKMS properties in the ETKMS appliance editor as described in
Figure 52
Key Management System appliance editor