Before you begin, please ensure that:
-
The CryptoServer is set up and configured. Refer to the CryptoServer documentation to set up the HSM.
-
The MBK is created and stored onto each HSM. Refer to the CryptoServer documentation to set up the MBK.
-
The CryptoServer Default Admin has been replaced with a new admin user.
-
The operating system used is listed in Tested Versions.
-
The SecurityServer used is listed in Tested Version.
-
For demonstration purpose following machines have been used:
-
One system with AD DS and AD CS role installed on it. It will be used as a domain controller and certificate authority. You can also use your existing domain controller and certificate authority.
-
Second system joined in domain for AD FS server.
-
-
Java version 8 or above has been installed on the AD FS server.
-
An admin user is set up, as it is required for installing software.
-
The CSP/CNG library is set up and configured on the AD FS server as per the environment. Refer the CryptoServer documentation to set up and configure the library for the CryptoServer.
-
Port 443 is allowed through the Firewall.
-
You familiarize yourself with the AD FS documents and setup process.