TM
netHSMª
2. Install nCipher software on remote file system (RFS) and client machines
Administrator privileges needed on each machine. netHSM User Guide, Ch4: Software installation
4. Configure the remote file system (RFS) on the RFS machine (not the netHSM)
anonkneti <netHSM IP> [Will respond with an ESN and HASH rfs-setup creates a file and folder structure on a local netHSM User Guide, Ch5: Module & client config
to be used in the rfs-setup command below.] machine for use by the netHSM as a remote file store.
rfs-setup --force <netHSM IP> <netHSM ESN> <netHSM KNETI HASH>
This should look something like this example below:
rfs-setup --force xxx.xxx.xxx.xxx 9F73-2D25-5D1A 4c05f57e9f981d33eadd149cd060b6ad535fc676
5. Configure the netHSM to use the RFS (from netHSM menu 1-1-3)
Enter IP of remote file system (RFS) machine. Informs the netHSM of the location of its remote file system. netHSM User Guide, Ch5: Module & client config
Leave port number as default of 9004.
8. Set the time and date on the netHSM (from netHSM menu 1-1-8)
Enter UTC date and time. Sets the time and date of the netHSM as UTC.
A reboot is requested here.
9. Create new (or load existing) security world (from netHSM menu 3-2-1 or 3-2-2)
Create new security world (3-2-1). In either case, you are prompted for the ACS. netHSM User Guide, Ch6: Managing security worlds
Load existing security world (3-2-2).
11. Configure the module to use the client (from netHSM menu 1-1-4-1)
New client. Informs the netHSM of the location of its client netHSM User Guide, Ch5: Module & client config
Enter remote client IP. (a client is a machine using the netHSM for cryptography).
Select client privileged on any port. If you want a privileged connection to the client
Select No for nToken.†† ††If your client has an nToken and you wish to use it:
13. Configure TCP sockets on the client for Java applications (for example, KeySafe)
config-serverstartup -sp This enables TCP sockets for Java. netHSM User Guide, Ch5: Module & client config
1-6-1 Shutdown
1-6-2 Reboot
2 HSM
2-1 HSM information
2-1-1 Display details
2-1-2 Display secure RTC
2-1-3 Speed test 4 payShield
2-1-4 Display statistics
2 3
6
For full installation and saftey
instructions, now read the
Hardware Installation Guide.
4 5
7
? www.ncipher.com/support
support@ncipher.com