Before you begin, please ensure that you have installed/set up:
-
CryptoServer. Refer to the CryptoServer documentations to setup the HSM.
-
The operating system listed in Tested Versions.
-
The SecurityServer version listed in Tested Versions.
-
CryptoServer Default Admin – this should be replaced with a new admin user.
-
The MBK – must be created and stored onto each HSM. Refer to the CryptoServer documentation to set up the MBK.
-
If you are using Smartcard Authentication – install PIN PAD Driver through the SecurityServer software file, configure PIN PAD, and start PIN Pad Daemon. Refer to the CryptoServer documentation for more information about PIN PAD driver installation and configuration.
-
Following machines to demonstrate the NDES Integration:
-
A Domain Controller.
-
CA Server with joined to domain and ADCS Installed.
-
A server joined to the domain. This will be used for installing NDES and configuring it as part of the integration process in next chapter.
-
A Client machine without joined to domain.
-
Ensure that your domain controller and ADCS server is up and running before proceeding ahead. The steps for creating a domain controller and setting up ADCS is out of scope of this document. You can refer to ADCS with OCSP Integration Guide with Utimaco HSM for steps to install and configure ADCS for setting up a Certificate Authority.