User Guide

Key Management Environment Configuration

There are various settings that need to be configured for any type of key management system (KMS) that is enabled in an environment:

Setting

Description

Key Management System

Select which type of KMS to use. The following KMS options are available, depending on whether you are using Hadoop:

  • Hadoop (default Hadoop KMS)

  • Ionic Machina (optional KMS for use with Hadoop)

  • AWS Secrets Manager (can be used with or without Hadoop)

  • HashiCorp Vault (can be used with or without Hadoop)

If you select None, any hashing rules, encryption rules, derived tokenization, and HDFS Token Vault encryption will not be available for this environment.

KMS Location

Hadoop KMS URL: The URL of the Hadoop KMS (if Hadoop is selected as the KMS).

Ionic Machina Persistor Path: The path to the Ionic Machina Persistor (if Ionic Machina is selected as the KMS.)

Note

For more information about setting up Ionic Machina as the KMS for the platform, see the separately provided Ionic Machina Reference Guide. (Please contact Privitar for further information about Ionic Machina integration.)

In this section: