Creating an HSM configuration - BlueCat Integrity - 26.1.0

Address Manager Administration Guide
ft:locale
en-US
Product name
BlueCat Integrity
Version
26.1.0

How to create an HSM configuration in Address Manager.

Zone signing with DNSSEC-HSM requires the creation of an HSM configuration in Address Manager. An HSM configuration manages HSM servers and HSM linked objects (such as the DNSSEC-HSM signing policy), while standard Address Manager configurations allow you to globally manage IPAM, DNS, DHCP, and Servers.

Note: Address Manager supports only one HSM configuration on the system.

To create an HSM configuration:

  1. Log in to Address Manager as the administrator. By default, the username and password are admin.
  2. Select the Settings tab in the sidebar, then select HSM settings under DNS settings.
  3. Select Create HSM configuration.
  4. Under General, set the following parameters:
    • Name—enter a name for your HSM configuration.
    • Key providerEntrust HSM (default).
  5. In the Change control section, add comments if required.
  6. Select Create.
Your HSM configuration is created successfully. Address Manager returns you to the HSM configuration details page. Select the HSM configuration name menu, then select View details. The Configure security world button is displayed.
After creating an HSM configuration, you must now add an HSM server(s) to that HSM configuration.