Can the KCA OneStep SSL certificate private key be kept on a HSM?
Originally Published: 2003-11-24
Article Number
Applies To
Sun Solaris 2.8
nCipher Hardware Security Module
Issue
Resolution
There are two ways to utilize the KCSOSD_SSLKEY_PASSPHRASE variable. You could program the passphrase into the plugin or insert the passphrase in HTML as an hidden field. The programmatic approach is more secure and is recommended for production systems. The HTML approach is good for demo purpose.
As an example, programmatically:
int KCSOSExchange(void *context, KCSOSNVInterface *pInterface) {
// ...
pInterface->InsertEntry(pInterface->NVlist, KCSOSD_SSLKEY_PASSPHRASE, "1234", 5);
// ...
}
HTML
<INPUT TYPE="HIDDEN" NAME="KCSOSD_SSLKEY_PASSPHRASE" value="1234">
Related Articles
Devices Deleted From Manage Monitored Devices Keep Coming Back Number of Views Remote Management Module (RMM or RMM4) card keeps disconnecting Number of Views Windows agentless account keeps locking out. Number of Views The Offline Task runtime keeps increasing Number of Views Can't log in to the administration console and keep getting the login page Number of Views
Trending Articles
How to download and install the AFX Server Archive in RSA Identity Governance & Lifecycle RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide The Template ({Connector Template Name}) has missing file content error when creating AFX Connectors in RSA Identity Gover… Downloading RSA Authentication Manager license files or RSA Software token seed records Troubleshooting RSA MFA Agent for Microsoft Windows
Don't see what you're looking for?
