| title | excerpt | updated |
|---|---|---|
KMS configuration with Nutanix on OVHcloud |
Learn how to configure OVHcloud Key Management System (KMS) with Nutanix to secure your data at rest |
2025-02-14 |
This guide explains how to configure the OVHcloud Key Management System (KMS) with Nutanix on OVHcloud.
Nutanix provides two options for securing data at rest:
- Self-Encrypted Drives (SEDs)
- Software-only encryption which offers key-based access management through either the cluster's native key manager or an external key management system (KMS).
By following this guide, you will learn how to leverage Nutanix's data-at-rest encryption capabilities using the OVHcloud KMS.
- Access to your OVHcloud Control Panel.
- A valid OVHcloud KMS key in your OVHcloud account.
- Find more information in our guide Getting started with OVHcloud Key Management Service (KMS)
- A Nutanix on OVHcloud cluster in your OVHcloud account.
- The cluster must be compatible with Data-At-Rest Encryption. Please confirm this with your OVHcloud sales representative or with the support teams.
- A Nutanix license that supports the Data-At-Rest Encryption feature.
- Access to the Nutanix cluster via Prism Central/Prism Element.
- Compliance with Nutanix’s feature guidelines:
1. Log in to Prism Central.
2. Navigate to Prism Element{.action}.
{.thumbnail}
3. Go to Settings{.action}.
{.thumbnail}
1. Scroll to Data-at-Rest Encryption{.action} in the settings menu.
2. Click on Edit Configuration{.action}.
{.thumbnail}
3. Select the Encryption Type{.action} and KMS Type{.action}.
{.thumbnail}
{.thumbnail}
4. Enter your configuration details to generate the Certificate Signing Request (CSR).
{.thumbnail}
1. Add your Key Management Server (KMS).
{.thumbnail}
2. Click on Manage Certificates{.action}.
{.thumbnail}
3. Upload your Certificate Authority (CA).
4. Once the CA is uploaded, go back to Key Management Server{.action} and click Manage Certificates{.action}.
{.thumbnail}
1. Test all nodes in the cluster.
{.thumbnail}
2. If the test is successful, you can now enable encryption for your Nutanix cluster.
{.thumbnail}
3. You can enable both software encryption and Self-Encrypting Drives (SEDs).
{.thumbnail}
- Nutanix Security Guide for Data-at-Rest Encryption
- Getting started with OVHcloud Key Management Service (KMS)
- Nutanix Compatibility Matrix
If you need training or technical assistance to implement our solutions, contact your sales representative or click on this link to get a quote and ask our Professional Services experts for assisting you on your specific use case of your project.
Join our community of users.