You can add or modify a Microsoft Azure Key Vault server with access node from the CommCell Console.
Procedure
-
From the CommCell Console ribbon, on the Home tab, click Control Panel.
The Control Panel window appears.
-
Under Storage, click Key Management Servers.
The Encryption Key Management Servers dialog box appears.
-
Click Add, and then select Azure Key Vault.
The Key Provider Properties dialog box appears.
-
In the Key Provider Name box, enter an unique name for the key provider.
-
From the Encryption Type list, select the encryption type.
-
From the Encryption Key Length list, select the key length to use with the Advanced Encryption Standard (AES) cipher.
-
In the Key Vault Name box, enter the name of the Azure Key Vault.
-
To use access node, complete the following steps:
-
Select Use Access Node checkbox.
The Access Nodes area appears.
-
Click Add.
The Access Node dialog box appears.
-
From the Access Node list, select the MediaAgent that you want to use as access node.
-
From the Authentication Type list, select an authentication type from IAM AD Application (Certificate) and IAM VM Role (Managed Identity).
-
If you selected IAM AD Application (Certificate) as authentication type, then enter the access information.
-
Tenant ID: Enter the tenant ID associated with the Azure account.
-
Application ID: Enter the application ID associated with the tenant.
-
Certificate: Select the location of the certificate.
-
For example, C:\Certificates\client.pfx
-
Certificate Thumbprint: Enter the thumbprint for the certificate.
-
Certificate Password: Enter the certificate password.
-
Environment: Select the Azure cloud environment to use.
-
Authentication Endpoint: Enter the authentication endpoint.
-
Key Vault Endpoint: Enter the key vault endpoint.
-
-
Click OK.
-
-
Click OK.
Results
The Key Vault server appears in the Encryption Key Management Servers dialog box.