Smartcrypt Enterprise Manager on AWS
Smartcrypt Enterprise Manager Setup and Configuration Quick Start
Validate security groups
- Make sure the security groups on the server allow both SSH (TCP:22) and HTTPS (TCP:443) connectivity to the Smartcrypt Enterprise Manager instance
- Smartcrypt Infrastructure Ports and Protocols
Connect to the SMDS via SSH using the operating system username (ubuntu) and ssh key associated with the instance in AWS
- AWS will provide connection instructions like this:
Create a password for the ubuntu account
While logged in via SSH, set a password for the ubuntu account using the command:
sudo passwd ubuntu
Name the instance
Give the instance a meaningful name. It is recommended to set this name to the server's fully qualified domain name (FQDN) for your server (ex: mysmartcrypt.mydomain.com)
sudo vi /etc/hostname
sudo hostname myfqdn
Connect a web browser using HTTPS to the external IP address of your Smartcrypt instance
Log in to the web interface using ubuntu as the username and the password you created in step 3 and accept the EULA
Activate Smartcrypt Enterprise Manager and select features
Select Archive and/or TDE products to activate
Configure TLS/SSL
- SSL configuration details
- Use the Upload Root option to upload trusted root certificate(s) to the server for your domain
- Install trusted certificate for the server matching its fully qualified domain name in PKCS#12 (.pfx) format
Join Active Directory Domain
- Active directory domain documentation
- Configure AD Account for authentication
- Configure LDAP User (+LDAPS)
- Exporting LDAPS public key for import
Configure AD Connection for User Lookups
Set Master database password and set backup schedule
Complete these steps once you have multiple Smartcrypt Enterprise Manager instances set up
Create Cluster
- Clustering multiple Smartcrypt appliances
- Verify connectivity
Setup first data center
- Setting up Smartcrypt Data Centers
- Verify connectivity