Setting up a private key and creating locked vaults

The first step involves creating a certificate signing request (CSR), registering certificate with IBM Cloud® Object Storage via Client Registration REST API and obtaining a private key (RSA based).

Once the private key is obtained, it can be used to create the locked vaults on the IBM Cloud Object Storage system. Additionally, for HTTPS (TLS), the CA certificate of the IBM Cloud Object Storage system is also required.

The two locked vaults required for transparent cloud tiering (data and metadata vaults) need to be created on the IBM Cloud Object Storage by using the create vault from template REST API. Once these vaults are created, they can be specified on the mmcloudgateway filesystem create command via the –container-prefix option.