Question

Nutanix Local Key Manager

  • 10 May 2022
  • 2 replies
  • 49 views

Can someone provide a brief explanation of Nutanix local key manager and how it handles the following in ‘???’:

  • key access: access to the management console is restricted to authorized individuals abased on job function.
  • changing / updating keys: encryption keys are updated from the management console, software encryption (rekey button) if necessary.
  • revoking keys: ??? (when does revoking keys happen?)
  • recovery keys: ??? (how do you recover if you have the key backup?)
  • archiving keys: keys are archived (backed up) from the management console, managed keys where you download the key backup by setting up a recovery password to decrypt the backup file. 
  • activity logs: ??? (is there activity logs for keys? If yes, where is this stored and how long is the retention before the activity is overwritten?)

BTW: I have this link already Native Local Key Manager (nutanix.com) but is does not have any details of the 

Thanks in advance.

 


2 replies

Were you able to find the answers to these questions? I’m particularly interested in recovery in the event of hardware or cluster failure as the LKM is on the same cluster.

Userlevel 4
Badge +5

Hello @wye88 and @whizzard 

Kindly check the below link:

https://portal.nutanix.com/page/documents/details?targetId=Nutanix-Security-Guide-v6_0:wc-security-data-encryption-wc-c.html

 

Reply