Can the KCA OneStep SSL certificate private key be kept on a HSM?
Originally Published: 2003-11-24
Article Number
Applies To
Sun Solaris 2.8
nCipher Hardware Security Module
Issue
Resolution
There are two ways to utilize the KCSOSD_SSLKEY_PASSPHRASE variable. You could program the passphrase into the plugin or insert the passphrase in HTML as an hidden field. The programmatic approach is more secure and is recommended for production systems. The HTML approach is good for demo purpose.
As an example, programmatically:
int KCSOSExchange(void *context, KCSOSNVInterface *pInterface) {
// ...
pInterface->InsertEntry(pInterface->NVlist, KCSOSD_SSLKEY_PASSPHRASE, "1234", 5);
// ...
}
HTML
<INPUT TYPE="HIDDEN" NAME="KCSOSD_SSLKEY_PASSPHRASE" value="1234">
Related Articles
Devices Deleted From Manage Monitored Devices Keep Coming Back Number of Views Windows agentless account keeps locking out. Number of Views Remote Management Module (RMM or RMM4) card keeps disconnecting Number of Views The Offline Task runtime keeps increasing Number of Views Can't log in to the administration console and keep getting the login page Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide How to Download OTP Token Seed Files from myRSA How to manipulate imported RSA SecurID Software Token(s) on an iPhone or iPad device
Don't see what you're looking for?
