Overview
Zettaset XCrypt Management Platform provides visibility & control of all key management systems. Smart Key technology enables centralized policy enforcement and governance across multiple data protection systems. With 41% of organizations having 5-7 separate encryption key management systems unifying hardware and virtual key managers under one platform is critical to your data protection strategy.
Zettaset XCrypt Management Platform is a simple and scalable solution providing actionable intelligence to detect and remediate potential cyberattacks faster using data and key activity monitoring to minimize the window of exposure.
Data protection that scales from hybrid cloud to edge devices without performance degradation is mission critical to an enterprise security posture. The XCrypt Management Platform provides unified visibility and control of encrypted data for any workload across complex environments. XCrypt's unique technology transforms encryption keys to Smart Keys thereby gathering a higher level of intelligence for traditional workloads.
Legacy security methods are not suitable for the DevOps workloads, hence a modern approach to protection is needed for DevOps workloads. By embedding the Smart Key technology within the purpose built persistent volume encryption Zettaset XCrypt Management Platform provides scalable data protection in any Kubernetes environment.
Highlights
- Vendor agnostic management platform for all key managers. Encryption key activity monitoring provides earlier detection of cyberattacks.
Details
Pricing
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
No Refunds
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
README file has the release notes information.
Additional details
Usage instructions
Initial Configuration
I. Configuring SSL
Perform the following steps on the machine that will run the API Server.
SSH into instance over port 22 via the public DNS with the username 'centos'
-
Install CA Server
$ sudo /usr/share/zts/cmc/zts-cmc-server/bin/install_ca_server.sh
-p-o -u -e
-l-s -c replace
with a password you generate. CA parameters are optional; if it is not specified, defaults will be used.
Here's an example of this command.
$ sudo /usr/share/zts/cmc/zts-cmc-server/bin/install_ca_server.sh
-p asdf1234 -o Zettaset -u Engineering -e engineering@zettaset.com
-l 'Mountain View' -s California -c US -
Start CA Server
$ sudo service estserver start
-
Generate certificates for API Server and Web Server
$ sudo /usr/share/zts/cmc/zts-cmc-server/bin/configure_ssl_certs.sh
-i-p
-o-u -e
-l-s -c
-nreplace
with the public IP address of the local host replace with the CA password you created in Step 1. replace
in -n argument with the DNS (or resolvable via /etc/hosts) name of the Management Console server. CA parameters are optional; if it is not specified, defaults will be used. Make sure that you specify the same CA parameters as those you used in step 1 above.
When this command finishes executing, it will display keystore password. Save this password in a secure location. You will need it to configure the API server. If you are installing CLI client on the same host as the API server, make sure the CLI client RPM is installed before running this command. This will ensure that the CA certificate will be automatically added to CLI client configuration.
Here's an example of this command.
sudo /usr/share/zts/cmc/zts-cmc-server/bin/configure_ssl_certs.sh
-i 192.168.99.100 -p asdf1234
-o Zettaset -u Engineering -e engineering@zettaset.com
-l 'Mountain View' -s California -c US
-n ztc-cmc -
Stop CA Server
$ sudo service estserver stop
III. Configuring API Server
- Make sure you performed CLI Client configuration steps documented in Section I and Section II.
Perform the following steps on the API server host.
-
Set API server name via
property in the server configuration file /usr/share/zts/cmc/zts-cmc-server/config/apiserver.xml -
Set "enabled" property to "yes" in "ssl" section of the server configuration file /usr/share/zts/cmc/zts-cmc-server/config/apiserver.xml
-
Set the "password" property in "keystore" section of the server configuration file /usr/share/zts/cmc/zts-cmc-server/config/apiserver.xml to the value you recorded in step 3 of Section I.
-
Register API server service
$ sudo /usr/share/zts/cmc/zts-cmc-server/service/register-service.sh
-
Start the API server.
$ sudo service zmc-server start
README file contains additional information.
Resources
Vendor resources
Support
Vendor support
https://www.zettaset.com/customer-support/ Phone: +1-866-561-4981 Email: support@zettaset.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.