Search This Blog

Tuesday, August 9, 2011

Creating Distributed Key Management (DKM) for VMM 2012


During installation of VMM 2012, you will come across to one option about DKM.

So what’s DKM and when do you use it?

DKM allow you to store encryption key in Active Directory and most of the time is use when setup high available VMM Server. It is not feasible to store the encryption key on only one of the VMM Server.

To create DKM, you need to

1. Use ADSIEdit.msc

2.Create a container called VMMDKM anywhere in AD DS hierarchy.

Below is sample of VMMDKM that i have created:-


During VMM 2012 installation, enter the following distinguished name:-

CN=VMMDKM, DC=contoso, DC=com