An Entrust nShield Hardware Security Module (HSM) is a secure cryptographic processor that enables the signing and securing of DNS zones.
Address Manager and DNS/DHCP Server support HSMs through DNSSEC. An HSM extends and improves DNSSEC functionality by localizing key generation and primary zone signing on the HSM server instead of the BlueCat appliance/VM. BlueCat’s HSM implementation supports integration with Entrust nShield Connect® HSM appliances.
Note: BlueCat Enterprise DNS is compatible
with Entrust nShield HSMs. Please refer to the following table for supported tested
HSM models and associated software/firmware versions:
| Product | Version | nShield Model | Security World Client | nShield Image | nShield Firmware | Security World |
|---|---|---|---|---|---|---|
| BlueCat | 25.1 | nShield 5c | 13.6.5 | 13.6.5 | 13.2.4 | v2, v3 |
| BlueCat | 25.1 | nShield XC | 13.6.5 | 12.70.8 | 12.50.11 | v2, v3 |