Setting Up the KeyControl Compliance Manager webGUI

  1. Use a web browser to navigate to https://node-ip-address, where node-ip-address is the Host IP address that you specified during installation. For security reasons, you must explicitly specify https:// in the URL.

  2. On the Entrust KeyControl Compliance Manager login page, enter the username and password and click SIGN IN.

    • For vSphere, enter secroot for both the username and password.

    • For AWS, enter secroot for the username and the AMI Instance ID for the password.

  3. Review the EULA (end user license agreement). When you are done, click I Agree to accept the license terms.

  4. On the Welcome to Appliance Management screen, click Continue as a Standalone Node.

  5. On the Change Password page, enter a new password for the secroot account and click Update Password.

    Important: The tenant manager (https://<IP-Address>/kcm) now uses the same default username (secroot) and password that is used for the KeyControl Appliance Management webGUI (https://<IP-Address>/appliance). The KeyControl Appliance Management webGUI can now be accessed from the tenant manager.

  6. On the Configure E-Mail and Mail Server Settings page, specify your email settings: 

    Option Description
    Disable E-mail Notifications check box

    If checked, no alert emails are sent to the user accounts in the system. If the Admin Key is regenerated, all security admins must manually download their key parts from the Settings tab.

    If this option is not selected, you will receive alerts and new Admin Key parts through email. Security Admins can still download their Admin Key parts from the KeyControl Appliance Management webGUI.

    Important: If SMTP is not configured and turned on, you will not be able to use email notifications in KeyControl Compliance Manager.

    Email

    The email address where alerts will be sent.

    Server

    The IP address or fully qualified domain name (FQDN) of the SMTP server.
    Port

    The mail server port. The default is port 25.

    SMTP Username

    Enter the username for the SMTP server, if required.

    SMTP Password

    Enter the password for the SMTP server, if required.

    Sender

    The sender that should be used when sending email.

    Enable SMTPS checkbox

    If this option is set to On, KeyControl Compliance Manager uses SMTP Secure (SMTPS).

    Note: Important information such as alerts and admin keys are shared by email. We highly recommend you set this option to use encryption with SMTP.

  7. When you are done, click Update Email Settings.

  8. On the Download Admin Key page, click the Download button to save the admin key locally. Please keep the admin key in a safe place for later use. When prompted for an admin key to recover your system, you must provide this admin key to proceed. If you do not have your admin key, you may lose your data.

    Note: Whenever the admin key is regenerated, you must download the new admin key.

  9. When you are finished, click Continue.

  10. Click Continue to Appliance Management to finish setting up KeyControl Compliance Manager.