Configuring Unified Key Orchestrator

You can configure Unified Key Orchestrator (UKO) with IBM Guardium Key Lifecycle Manager to store the master key.

When you configure IBM Guardium Key Lifecycle Manager with UKO, you can use one of the two supported authentication mechanisms:

OpenID Connect (OIDC)

The OIDC authentication requires user credentials for authentication. For instructions, see Configuring Unified Key Orchestrator with OIDC authentication.

Mutual Transport Layer Security (mTLS)

The mTLS authentication requires the exchange of public certificates between IBM Guardium Key Lifecycle Manager and UKO for authentication. For instructions, see Configuring Unified Key Orchestrator with mTLS authentication.