Retrieving the system certificate from the HCP for cloud scale system and uploading the CA certificate to the KMS server

Content Platform for Cloud Scale Administration Guide

Version
2.6.x
File Size
1945 KB
Audience
anonymous
Part Number
MK-HCPCS008-10

The KMS server requires an SSL certificate from the HCP for cloud scale system to establish mTLS.

For example, to retrieve the system certificate from the HCP for cloud scale system and upload the CA certificate on the Thales system:

  1. Open the HCP for cloud scale system certificate and copy the body.
  2. Log in to the Thales system.
    The web console opens.
  3. Select CA > External.
    The External Certificate Authorities page opens.
  4. Click Add External CA.
    The Add External Certificate page opens.
  5. Name the certificate, paste in the body of the certificate, and click Save.
    The CA is added to the list of external certificate authorities.
  6. From the web console, select Admin Settings > Interfaces.
    The Interfaces page opens.
  7. Select the kmip interface.
  8. Click the more icon, at the righthand side of the interface, and select Edit.
    The Configure KMIP page opens.
  9. Select the HCP for cloud scale CA and click the add (+) button.
  10. Click Update