Before you can start encrypting virtual
machines, you must set up the Key Management Server (KMS) cluster. This
includes adding the KMS, establishing trust with the KMS, and setting the
default KMS cluster. The KMS must support the KMIP (Key Management
Interoperability Protocol) 1.1 standard, and it must be capable of acting as a
symmetric key foundry and server.