Directory Server is Unable to Use a nCipher netHSM as an External Security Device When Configured via redhat-idm-console

Solution Verified - Updated -

Issue

  • The Directory Server console (redhat-idm-console) cannot be used to add a netHSM security module
  • Command line tools (modutil, certutil) must be used to add the netHSM module prior to use
  • After configuring Directory Server to use an external security module via redhat-idm-console, the following error is displayed:

     SSL alert: Security Initialization: Unable to find slot
     Netscape Portable Runtime error -8127 - The security card or token does not exist, needs to be initialized, or has been removed.
    

Environment

  • Red Hat Directory Server 8
  • Red Hat Directory Server 9
  • Red Hat Enterprise Linux
  • nCipher netHSM Hardware Security Module

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In