Before installing Key Manager Plus in your environment, it is necessary to make sure that all the prerequisites and system requirements are in place. This document details the prerequisites, hardware and software requirements, and components essential for Key Manager Plus to function seamlessly. Verify that your environment meets all the requirements listed below, and then proceed with the installation.
Apart from the standard system requirements listed below, an external mail server (SMTP server) is essential for the proper functioning of the Key Manager Plus server and for sending various notifications to users.
Note:
The following are additionally required if you plan to use Key Manager Plus' SSH and SSL discovery operations:
The below table explains the minimum hardware capabilities that your Key Manager Plus application server needs to possess for successful installation and running.
| Organization Size | Processor | RAM | Hard Disk |
|---|---|---|---|
| Small (Less than 500 keys*) | Dual Core / Core 2 Duo or above | 8 GB |
|
| Medium (500 — 1000 keys*) | Quad Core or above | 8 GB |
|
| Large (More than 1000 keys*) | Octa Core or above | 16 GB |
|
Note:
The term 'keys' refers to the total number of SSH private keys, SSL/TLS certificates, and any other digital keys managed using Key Manager Plus.
| Operating Systems | Web Interface and Database |
|---|---|
Windows:
Linux: (Key Manager Plus usually works well with all the flavors of Linux)
Note: In general, Key Manager Plus goes well with any flavor of Linux and can also be run on VMs of the above operating systems. | Web Interface:
Database Requirement: |
Key Manager Plus is a bundled solution that comprises:
Key Manager Plus can be installed on Windows and Unix-based machines as a web application configurable according to user requirements. It is accessible via web-client applications, providing a web-based interface for users to interact with Key Manager Plus. Additionally, Key Manager Plus communicates with applications through REST APIs and SSH APIs.
Key Manager Plus supports PostgreSQL and MS SQL databases. By default, it comes bundled with PostgreSQL 15.7 but allows migration between databases for flexibility and convenience. Optionally, the MS SQL database can be configured as a backend database. This database is integral to the storage and retrieval of data within the Key Manager Plus ecosystem.
Users in Key Manager Plus are identified by their user ID or username and gain access to the application through a network service from a computer. Users can be imported using Active Directory, LDAP, and RADIUS Server or added manually via API or file imports. Once added, users can be assigned appropriate access roles and password policies.
The table below lists the ports and protocols used by Key Manager Plus:
| Port Name | Port Number | Purpose | Protocol | Direction |
|---|---|---|---|---|
| PostgreSQL Port | 53306 | Enables communication between Key Manager Plus and its PostgreSQL database. | TCP | Outbound |
| Web Client Port | 6565 | Provides web console access and supports agent communication. | HTTPS | Inbound |
| WMI / MSCA | 135 | Facilitates remote management of Windows services and systems. | TCP & UDP | Inbound and Outbound |
| SMB (Windows File Share) | 445 | Used for Windows authentication and file sharing operations. | TCP | Inbound and Outbound |
| LDAP | 389 | Enables directory services communication (Active Directory integration). | TCP | Inbound and Outbound |
| LDAPS | 636 | Enables secure directory communication over SSL/TLS. | TCP | Inbound and Outbound |
| SSH | 22 | Supports SSH key discovery, deployment, and remote access. | TCP | Inbound and Outbound |
| HTTPS (External Access) | 443 | Used for certificate discovery and integration with external services. | HTTPS | Inbound and Outbound |