Cryptographic Security Platform 1.0.0 adds the following features to PKI Hub 1.0.0.

Integration with Compliance Manager (ATEAM-17848)

Cryptographic Security Platform 1.0.0  integrates with Compliance Manager to manage your key inventory. You need to:

1. Meet the Compliance Manager requirements.
2. Start up CSP Certificate Manager as explained in Managing Certificate Manager.
3. Integrate Compliance Manager with CSP Manager Certificate as explained in Compliance Manager.

Log forwarding uses proxy configuration (EDM-10449)

The SIEM solution described in Managing Log Forwarder uses the proxy configuration set with the clusterctl proxy set command.

Docker Registry update to 2.8.3 (EDM-14214)

Cryptographic Security Platform 1.0.0 updates the Docker Registry component to 2.8.3.

Multi-node and single-node modes renamed (EDM-14644, EDM-17327)

The installation modes supported by the clusterctl install command have been renamed as follows.

Upgrade from EDM 2.0.2 (EDM-14996)

As explained in Upgrading, Cryptographic Security Platform 1.0.0 supports upgrading from both:

• Entrust Deployment Manager 2.0.2
• PKI Hub 1.0.0

EntrustOS packages updated (EDM-15602)

Cryptographic Security Platform 1.0.0 includes updated versions of the EntrustOS packages.

No proxy (EDM-16084)

The clusterctl proxy set command for configuring the proxy includes a new no-proxy option to select the domain names and IP addresses for which to skip the proxy.

Minimal password length increased to 16 characters (EDM-16086)

As explained in Password policy CIS benchmarks, the minimum supported length for the sysadmin user password is now 16 characters.

Hostname and IP address in the SAN of the default TLS certificate (EDM-16358)

Node hostname and IP address added to the Subject Alternative Name (SAN) extension of the default TLS certificate generated on cluster installation.