3.3 Configure remote file system / client connectivity

Note: This step applies only to netHSM. If you are not using a netHSM, you can skip this section.

The netHSM is capable of supporting multiple client computers at once. At least one of these client computers will be the MyID application server.

One computer on the network is designated the ‘remote file system’, and is used to store information used by the HSM. See the netHSM administrator guide that ships with the nShield HSM for instructions on configuring this. The ‘Basic Software Setup’ document that ships with the netHSM summarizes the steps required to configure this.

Once you have configured the MyID application server to connect to the HSM, verify the connectivity by running nShield's enquiry command line utility. Ensure that the module is listed, and that its State is described as Operational. If enquiry does not report the HSM as Operational, MyID cannot communicate with the module.

Note: If you have multiple MyID application servers, and do not have a remote file system configured, you must manually copy any keys from the C:\ProgramData\nCipher\Key Management Data\local folder of the machine that created the key to the same location on the other MyID application servers.