Set up a SafeNet KeySecure key store

If you are using a SafeNet key store, copy a set of libraries into the proxy distribution directory.

Before you begin

You must install and set up the SafeNet keystore before performing this step. Secure a license with Gemalto in order to download the libraries.

About this task

Note: On Linux, file paths use a forward slash.

Procedure

  1. Copy these files to <installation directory>/lib directory:
    • ingrian-nae-<version>.jar
    • ingrian-log4j-api-<version>.jar
    • ingrian-log4j-core-<version>.jar
  2. Change to the <installation directory>/conf/ directory, and open the edgeencryption.properties file.
  3. Enter the properties for the SafeNet key store.
    Table 1. Properties for an NAE device
    Property Description
    edgeencryption.nae.retries Number of retries to make.
    edgeencryption.nae.enabled If an NAE device is available.
    edgeencryption.nae.server Name of the NAE server.
    edgeencryption.nae.port Port used by the NAE server.
    edgeencryption.nae.protocol Protocol used by the NAE server.
    edgeencryption.nae.keystore.path Path to the key store on the NAE server.
    edgeencryption.nae.keystore.password NAE key store password.
    edgeencryption.nae.username User name to use to authenticate with the NAE device.
    edgeencryption.nae.password Password to use to authenticate with the NAE device.
    An example for a SafeNet key store.
    edgeencryption.nae.retries = 3
    edgeencryption.nae.enabled = true
    edgeencryption.nae.server = url
    edgeencryption.nae.port = 9000
    edgeencryption.nae.protocol = ssl
    edgeencryption.nae.keystore.path = keystore/safenet_truststore
    edgeencryption.nae.keystore.password = password
    edgeencryption.nae.user = safenet_user
    edgeencryption.nae.password = safenet_password
  4. Add or create a key in the SafeNet key store.
    You add the key name (alias) on the instance when you assign default keys.
  5. Save and close the edgeencryption.properties file.