Skip to main content

Key Manager Task Flow

The following list details the workflow for bringing your SSH user key environment under management using the PrivX Key Manager.

../AdministratorManual/images/Administrator%20Manual%20-%20Figure%C2%A01-1%20The%20general%20Key%20Manager%20system%20workflow.png

Figure 1.1. The general Key Manager system workflow

  • An installation expert installs the Key Manager system. For more information about installing the Key Manager system, see the Installation Manual.

  • The Key Manager administrator creates the Key Manager accounts. The Key Manager accounts are given to key management personnel for performing key management actions. See Key Manager Account and Permission Management.

  • A Key Manager user with host management permissions adds hosts to the managed environment. Hosts added into the managed environment are scanned for existing user keys, users, and SSH software data. Host deployment is described in Adding Hosts to the Managed Environment.

After you have added hosts to the managed environment, you can use Key Manager to perform key management and/or SSH configuration management on those hosts.

  • Define security policies, then validate your managed environment against the policies. Key Manager automatically flags items that violate security policies, making it easier for key-management personnel and application owners to remediate the managed environment. Policy-rule management is described in Enforcing Policies in the Managed Environment.

  • Key management operations include reviewing, adding, and removing authorizations on the hosts in the managed environment. Managing SSH user keys is described in Managing the SSH Key Environment.

  • You can use Key Manager to centrally configure SSH software on the hosts in the managed environment. Key Manager automatically tests the validity of the new SSH configuration before attempting to deploy it to the selected hosts. For more information on configuring SSH software, see SSH Software Configuration Management.

  • Further host management, such as adding hosts to host groups, can be used to support key and SSH software management. This can be particularly useful in large managed environments. For more information on host management, see Managing the Hosts in the Managed Environment.