Managing the IBM Security Guardium Key Lifecycle Manager master key in a Multi-Master setup

This topic explains the steps to perform the IBM® Security Guardium® Key Lifecycle Manager master key management operations in a Multi-Master cluster. All the master key management operations must be performed on the primary master server only.

1. Back up the primary master server.
   For instructions, see Configuring backup and restore.
2. Ensure that all the master servers in the Multi-master cluster are connected.
3. Perform the master key management operations on the primary master server.
   For instructions, see Master Key REST Service.
4. On all the master servers, ensure that the value of the useMasterKeyInHSM property in the SKLMConfig.properties file is configured correctly.
   If the Multi-Master cluster is configured to use HSM, the value of the useMasterKeyInHSM property must be true.