Login
    Contenu x
    Key Management Tool versions
    • 23 Jan 2025
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    Key Management Tool versions

    • Mis à jour le 23 Jan 2025
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    Key Management Tool 3.x

    Authentication Suite Server SDK for Entrust nShield HSM is provided with Key Management Tool 3.x (manager.exe on Windows versions and ‘manager’ on Unix versions).

    Key Management Tool 3.x:

    • Supports Entrust nShield software/hardserver as of version 11.60
    • Supports only the former Entrust nShield HSMs based on the former PowerPCSXF architecture (Entrust nShield Connect/Connect+/Solo/Solo+)
    • Does not support the new Entrust nShield HSMs based on the new PowerPCELF architecture (Entrust nShield XC)

    On Unix platforms (Linux, AIX, Solaris SPARC…), the location of the TCP communication socket used by the hardserver has changed in hardserver 11.70 and more. (hardserver installed with the Entrust nShield support software, Entrust CipherTools or Entrust CodeSafe toolkit).

    The Unix versions of Key Management Tool 3.x provided with Authentication Suite Server SDK for Entrust nShield HSM comply with the TCP communication sockets of previous version of the hardserver (prior 11.70).

    On Unix platforms where hardserver 11.70 or later is running, Key Management Tool 3.x may fail due to communication issue with the hardserver: “Open session error : 603 -> Error NFastApp Connect”.

    In this case, to allow Key Management Tool 3.x to communicate with the hardserver 11.70 or later, the hardserver must be configured to maintain backward compatibility with the legacy socket location. To do this:

    1. Create the file /etc/nfast.conf with the entry: NFAST_CREATEDEVNFAST=1
    2. Perform an /opt/nfast/sbin/init.d-ncipher restart to get the socket backward compatibility applied

    See the Entrust nShield software package v11.70 release notes for more information (rnotes.pdf).

    Key Management Tool 4.x (Windows 64-bit and Linux 64-bit versions only)

    Since Authentication Suite Server SDK for Entrust nShield HSM 3.18.1, the Windows 64-bit and Linux 64-bit versions are provided with an additional Key Management Tool 4.x (manager-xc.exe on Windows versions and ‘manager-xc’ on Unix versions).

    Key Management Tool 4.x:

    • Supports Entrust nShield software/hardserver as from version 12.40
    • Supports the former Entrust nShield HSMs based on the former PowerPCSXF architecture (Entrust nShield Connect/Connect+/Solo/Solo+) and the new Entrust nShield HSMs based on the new PowerPCELF architecture (Entrust nShield XC)

    Key Management Tool 3.x does not support the new Entrust nShield HSMs based on the new PowerPCELF architecture (Entrust nShield XC). It is madatory to use Key Management Tool 4.x to support these HSMs.

    Note that the Key Management Tool 4.x is only provided with the Windows 64-bit and Linux 64-bit versions of Authentication Suite Server SDK for Entrust nShield HSM.

    Key Management Tool 4.x should also support Entrust nShield software/hardserver from version 12.10.

    To have Entrust nShield XC support, the Entrust nShield software must be version 12.20.51 or 12.40 and higher.

    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle