Initializing the KeyControl webGUI

The first time you log into the webGUI for the first KeyControl node in the cluster, you need to do some basic initialization. After this process is complete, you can log directly into the webGUI on the first node or any additional nodes without going through these steps.

Before You Begin 

Make sure you have the following information:

• The Amazon instance ID for the KeyControl instance.
• The Elastic (Public) IP address associated with the instance.

Tip:

To find this information, select Instances from the Amazon Management Console EC2 Dashboard, then select the KeyControl instance in the table. In the Description tab, look at the Instance ID an IPv4 Public IP.

Procedure 

1. Use a web browser to navigate to https://<Elastic-IP-addy>, where <Elastic-IP-addy> is the Elastic IP address associated with the KeyControl AWS instance.

2. If prompted, add a security exception for the KeyControl IP address and proceed to the KeyControl webGUI.

   KeyControl uses its own Root Certificate Authority to create its security certificate, which means that certificate will not be recognized by the browser. For details, see KeyControl Certificates.

3. On the HyTrust KeyControl Login page, enter secroot for the username and the AWS instance ID as the password.
4. Review the EULA (end user license agreement). When you are done, click I Agree to accept the license terms.

5. On the Change Password page, enter a new password for the secroot account and click Update Password.

6. On the Configure E-Mail and Mail Server Settings page, specify your email settings.

   If you specify an email address, KeyControl sends an email with the Admin Key for the new node. It also sends system alerts to this email address.

   To disable alerts, select the Disable e-mail notifications checkbox. You can then download the Admin Key from the Settings tab in the webGUI.

7. When you are done, click Update Mail Settings.

8. On the Automatic Vitals Reporting page, specify whether you want to enable or disable Automatic Vitals Reporting.

   Automatic Vitals Reporting lets you automatically share information about the health of your KeyControl cluster with HyTrust Support. If you enable this service, KeyControl periodically sends an encrypted bundle containing system status and diagnostic information to a secure HyTrust server. HyTrust Support may proactively contact you if the Vitals Service identifies issues with the health of your cluster.

   KeyControl Security Admins can enable or disable this service at any time by selecting Settings > Vitals in the KeyControl webGUI. For details, see Configuring Automatic Vitals Reporting.

9. When you are finished, click Save & Continue.

   KeyControl displays the KeyControl webGUI. For details about the tasks you can perform from the webGUI, see the Administration Guide.

10. If you are using IE, import the certificate and add the KeyControl IP address to the trusted sites list in IE. You should also verify that the Downloads > File download option is enabled under Internet Options > Security > Custom Level.

What to Do Next 

• To add additional KeyControl nodes to form a cluster, see Deploying Additional KeyControl Nodes.
• For information about configuring and maintaining your KeyControl cluster, see the Administration Guide.