If CA Gateway will integrate with Entrust CA:
- Select the HSM tab of the Configuration page.
- Select one of the following cryptographic mechanisms on the Vendor list.
Entrust nShield
Select this option for Creating the administrator profile on HSM with Entrust nShield. See below for the configuration parameters.
File | Contents |
|---|---|
The nShield kmdata tar file | See Creating the kmdata folder and Creating the kmdata.tar file |
As explained in Creating the administrator profile on HSM, CA Gateway supports creating Entrust CA administrator profiles on HSM. In this case, always create the kmdata.tar file after creating the profile.
Thales Luna
Select this option for Creating the administrator profile on HSM with Thales Luna. See below for the configuration parameters.
File | Contents |
|---|---|
Server CA File | The certificate authority certificate to validate the HSM server certificate |
Client Certificate File | The client certificate to authenticate CA Gateway to the HSM. |
Client Private Key File | The private key associated with the client certificate |
Chrystoki Configuration File | The |
None
Select this option for Creating the administrator profile on software.
Also select this option if CA Gateway will not integrate with Entrust CA.