Open topic with navigation
VM Fields Shown in the WebGUI
In the webGUI, the following fields are shown. Most are editable.
- Description — The is a user-defined description of the VM. It can be set by editing
the VM properties.
- IP Address — The VM's IP address as seen by the KeyControl cluster. If some VMs are behind a NAT gateway,
then they will all show the same IP address: that of the gateway.
- Cloud VM Set — The Cloud VM Set to which this VM belongs.
- Heartbeat — The interval (in seconds) at which the VM pings a KeyControl node. Any actions such as device
revocation or revocation of the VM itself will be performed the next time that the VM heartbeats into
the KeyControl cluster. The minimum heartbeat interval is ten seconds.
- Grace Period — If the KeyControl cluster does not hear from the VM within the grace period (in seconds), the VM is
forced to go through authentication once more. Access to all encrypted devices will be revoked
at this point, so be sure to set the grace period to a value that is acceptable. To avoid simple
problems such as networking disconnects which could easily be hit for several heartbeat attempts,
the Grace Period should be at least 10 times the Heartbeat value.
- Grace Period — If the KeyControl cluster does not hear from the VM within the grace period (in seconds), the VM is
forced to go through authentication once more. Access to all encrypted devices will be revoked
at this point, so be sure to set the grace period to a value that is acceptable. To avoid simple
problems such as networking disconnects which could easily be hit for several heartbeat attempts,
the Grace Period should be at least 10 times the Heartbeat value.
- Status — this will be Online if the VM can be reached and Unreachable if the VM is
not accessible. This could occur if the VM is not reachable due to network errors or if the
VM is shut down.
- OS — Operating system level information about the VM.
- HyTrust Agent Version — The HyTrust software version that the client is running.
- Reauthenticate on IP Change: The default is No. If you change this option to Yes, when the IP address is changed, re-authentication is needed.
- Reauthenticate on Change of H/W signature: Currently, we use the MAC address of the first Ethernet card
as the hardware signature. If this value changes, re-authentication is needed. Typically,
when a VM is copied, the hypervisor changes the MAC address of the new copy so be warned.
- Reauthenticate on Reboot: The default is No. However, one could force re-authentication every time
the VM boots. This is similar to having a boot-time password to enable the VM to come up completely.
- Rekey Interval: The number of days that the Policy Agent will go between rekeying the encrypted disks.
- Mapping GUID: If mapping has been implemented, this field shows the connection between the mapped drive and this one.
Open topic with navigation