cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to protect the Secure Login Server CA keys / HSM Support?

Go to solution
Former Member

on ‎06-22-2015 1:15 PM

0 Kudos

Hi all,

appreciate if you could help me with this topic. Is there a way to support HSMs for SLS key generation? Are there best practice guides about how to protect the SLS-UserCA in a best way? Maybe there are existing guides dealing with this issues. Thanks a lot.

Carsten

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎06-22-2015 2:09 PM
0 Kudos

Hello,

Secure Login Server supports HSM for User CAs since 2.0 SP03.
The User CA keys must be pre-generated by the HSM with the delivered HSM tools.

For Configuration and dependencies to the CommonCryptoLib please take a look in the Secure Login Implementation guide chapter 5.7.5.

best regards

Alexander Gimbel

Show replies
Show replies
Former Member
‎06-22-2015 2:42 PM
0 Kudos

Thanks. I have seen that already, but it is very roughly documented. I wasn't able to find a list of supported HSMs on the PAM. Do you have more information about this?

Former Member
‎06-23-2015 8:12 AM
0 Kudos

Hi Mr Colt,

Please check the SAP note 1884870 Secure Login Server 2.0 HSM Configuration for more information.

KR

Valerie

Answers (0)

Ask a Question