Can the KCA OneStep SSL certificate private key be kept on a HSM?
Originally Published: 2003-11-24
Article Number
Applies To
Sun Solaris 2.8
nCipher Hardware Security Module
Issue
Resolution
There are two ways to utilize the KCSOSD_SSLKEY_PASSPHRASE variable. You could program the passphrase into the plugin or insert the passphrase in HTML as an hidden field. The programmatic approach is more secure and is recommended for production systems. The HTML approach is good for demo purpose.
As an example, programmatically:
int KCSOSExchange(void *context, KCSOSNVInterface *pInterface) {
// ...
pInterface->InsertEntry(pInterface->NVlist, KCSOSD_SSLKEY_PASSPHRASE, "1234", 5);
// ...
}
HTML
<INPUT TYPE="HIDDEN" NAME="KCSOSD_SSLKEY_PASSPHRASE" value="1234">
Related Articles
Devices Deleted From Manage Monitored Devices Keep Coming Back Number of Views Remote Management Module (RMM or RMM4) card keeps disconnecting Number of Views Windows agentless account keeps locking out. Number of Views The Offline Task runtime keeps increasing Number of Views Can't log in to the administration console and keep getting the login page Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
