Select the Hsm tab of the Configuration page to configure the connection wit the HSM (Hardware Security Module).
Mandatory: Yes.
Number of sessions
The maximum number of concurrent PKCS #11 sessions on the HSM.
Mandatory: When the Vendor value is nshield or thales.
HSM PIN
The PIN (Personal Identification Number) of the HSM (Hardware Security Module).
Mandatory: When the Vendor value is nshield or thales.
Token label
The label of the token that contains the private keys of the OCSP server certificate.
See Generating a VA certificate and key pair for how to generate the OCSP server certificate keys.
Mandatory: When the Vendor value is nshield or thales.
Vendor
The vendor of the security module.
Vendor | Security module |
|---|---|
none | Built-in software PKCS #11 module. |
nshield | nShield HSM. See HSM requirements for the supported models. |
thales | Thales HSM. See HSM requirements for the supported models. |
It is recommended to select a Hardware Security Module (HSM).
Mandatory: Yes.