KeyControl Vault v 10.2 Online Documentation Set

Updated May 17, 2024

KeyControl Vault® provides encryption and key management for virtual machines located in data centers or private, public, or hybrid clouds. KeyControl Vault consists of two main components:

  • Entrust KeyControl Vault (KeyControl Vault) — KeyControl Vault stores encryption keys, policies, and configuration for any number of virtual machines with the Entrust KeyControl Policy Agent installed.
  • Entrust KeyControl Policy Agent (Policy Agent) — A software module that runs inside Windows and most Linux operating systems that provides encryption of virtual disks, file systems, and individual files.

This online documentation set includes all of the books for KeyControl Vault Version 10.2. You can also access:

  • A list of the new and changed features in Version 10.2 in What's New.
  • A PDF version of the current Entrust KeyControl Vault Release Notes , and documentation for previous DataControl releases at https://trustedcare.entrust.com/.

For the latest information about Entrust, upcoming events, and our products, visit https://www.entrust.com/digital-security/cloud-security-encryption-key-management or follow us on https://twitter.com/Entrust_Corp.

Books Included in the Online Documentation Set

Installation and Upgrade Guide

Explains how to install and Entrust KeyControl Vault. Provides basic KeyControl webGUI configuration information required to verify that the installation was successful.

Administration Guide

Provides detailed configuration information for KeyControl Vault and explains how to encrypt VMs with the Policy Agent.

Programmer's Reference Guide

Describes the Entrust CLI (hicli) and REST API scripting interfaces for KeyControl Vault. Contains a copy of the manpages for the hcl, hcs3, and htroot commands.

KeyControl Vault with VSAN and VMware vSphere VM Encryption

Explains how to set up a KeyControl Vault KMIP server as a vSphere KMS (Key Management Server), which allows KeyControl Vault to manage the encryption keys for virtual machines that have been encrypted with vCenter Server for vSphere Virtual Machine Encryption or VMware VSAN Encryption.

KeyControl Vault and DataControl in Amazon Web Services

Explains how to deploy KeyControl Vault in an Amazon Web Services (AWS) environment and how to encrypt AWS root and swap drives.

KeyControl Vault and DataControl in Microsoft Azure

Explains how to install and configure KeyControl Vault on Microsoft Azure.

Entrust PASM Vault Programmer's Reference Guide

Explains how to create centralized secure storage used to manage and control access to secrets required to access systems and resources.

Release Change History

A list of the main new features introduced in every release of KeyControl Vault.