Select the HSM tab of the Configuration page to configure the Hardware Security Module (HSM).
See HSM requirements for the supported HSM and Configuring an nShield HSM for the additional steps required by Entrust nShield HSMs.
HSM
An identifier for the HSM in Certificate Authority.
Mandatory: Yes.
Vendor
The identifier of the HSM manufacturer.
Vendor | Description |
|---|---|
none | A built-in software PKCS #11 module (not recommended). |
nshield | An Entrust nShield HSM. See HSM requirements for the supported versions. |
Mandatory: Yes.
HSM PIN
The PIN for accessing the HSM.
Mandatory: Yes.
Host to download the nShield kmdata
The domain name of the IP address of the host for downloading the kmdata configuration of the HSM.
Mandatory: When the value of Vendor is nShield.
Username to download the nShield kmdata
The username for logging into the host and downloading the kmdata configuration of the HSM.
Mandatory: When the value of Vendor is nShield.
Password to download the nShield kmdata
The password for logging into the host and downloading the kmdata configuration of the HSM.
Mandatory: When the value of Vendor is nShield.
Key application type (APPNAME)
The value of the APPNAME parameter in the HSM.
Mandatory: When the value of Vendor is nShield.
Key unique identifier
The unique identifier of the Certificate Authority key in the HSM.
Mandatory: When the value of Vendor is nShield.