The minimum setup requirements for your HSM network environment.
With the help of your network administrator or HSM provider, ensure your HSM environment meets the following requirements:
- Third-party HSM server has been setup and configured on your local network.
- HSM Security World has been created. For more information on creating the HSM Security World, refer to the Thales User Guide.
- Address Manager and DNS Server appliances/VMs must be connected to the same local network as the HSM server and their IP addresses must be added to the client list of the HSM server. By default, the HSM server uses TCP port 9004, but if your environment uses a different port, this is also supported. For further details, refer to the Thales User Guide.
- Address Manager has been properly set up with a configuration, DNS views, zones, deployment roles, IP blocks, networks and other necessary settings.
- A Remote File Server (RFS) has been setup and configured on the same network as the
HSM server and Address Manager and DNS Server appliances. For more
information on setting up and configuring a Remote File Server for HSM, refer to the
Thales User Guide.Note:
- Only one RFS is supported per Security World.
- The Remote File Server is only needed for initial configuration of the Security World. Day-to-day operation of the HSM configuration does not require the RFS.
- Optional: You can also configure the Security World by uploading a compressed file to Address Manager that contains the Security World files from the RFS. For details, refer to OPTIONAL: Copying Security World files.
- For more information on setting up the necessary HSM prerequisites, refer to the Thales User Guide.