Startup Authentication

You can choose to enable passphrase-based startup authentication to provide further protection for the master key for all nodes in the same cluster. With passphrase-based startup authentication, the KeyControl Compliance Manager node will enter Recovery Mode every time it is rebooted. You will need to enter the passphrase in the KeyControl Compliance Manager webGUI.

Startup Authentication allows KeyControl Compliance Manager to be used in tactical kits in hostile environments. Onsite staff can simply power off the KeyControl Compliance Manager nodes, which make them unusable until a passphrase or admin key is provided.

Note: If Startup Authentication is enabled, you cannot add a new KeyControl Compliance Manager node. You must disable Startup Authentication first, add the new node, and then re-enable Startup Authentication.

Related Topics