VMware Cloud Director Encryption Management is a solution add-on which grants tenant administrators the ability to use encryption keys from their own key providers for encryption of virtual machines (with or without vTPM devices), vApp templates, and named disks in their VMware Cloud Director virtual data centers (VDCs).
What's new in VMware Cloud Director Encryption Management 1.2
As a service provider, you can perform the following tasks.
Register a key provider cluster, that consists of multiple servers, which are configured in high availability and improve service reliability.
Publish a key provider with a custom name.
As a tenant administrator, you can perform the following tasks.
Use a unique encryption key for each object in your organization VDC.
Create a rotation schedule for your encryption keys.
Encrypt objects with a specific encryption policy, depending on the storage policy you use in your VDC.
Avoid re-encryption of the objects in your VDC, when removing an encryption policy.
How to set up VMware Cloud Director Encryption Management
As a cloud provider, follow these steps to set up VMware Cloud Director Encryption Management for tenant organizations.
Once a key provider is published for a tenant, they gain access to VMware Cloud Director Encryption Management.
As a tenant administrator, follow these steps to complete the key provider configuration:
How to upgrade VMware Cloud Director Encryption Management
| VMware Cloud Director 10.5 | VMware Cloud Director 10.6 | |
|---|---|---|
| VMware Cloud Director Encryption Management 1.1 | ✅ | ❌ |
| VMware Cloud Director Encryption Management 1.2 | ✅ | ✅ |
