Directory Server is Unable to Use a nCipher netHSM as an External Security Device When Configured via redhat-idm-console

Solution Verified - Updated -

Issue

  • The Directory Server console (redhat-idm-console) cannot be used to add a netHSM security module
  • Command line tools (modutil, certutil) must be used to add the netHSM module prior to use
  • After configuring Directory Server to use an external security module via redhat-idm-console, the following error is displayed:

     SSL alert: Security Initialization: Unable to find slot
     Netscape Portable Runtime error -8127 - The security card or token does not exist, needs to be initialized, or has been removed.
    

Environment

  • Red Hat Directory Server 8
  • Red Hat Directory Server 9
  • Red Hat Enterprise Linux
  • nCipher netHSM Hardware Security Module

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content