CloudCenter 4.8 has reached End of Life (EOL) as of November 14, 2018. See End of Support Notices for additional context.

CloudHSM Integration

Overview

The CloudCenter platform supports AWS Cloud Hardware Security Module (CloudHSM), a hardware appliance that provides secure key storage and enables cryptographic operations within a tamper-resistant hardware module. 

Requirements

To use CloudHSMs, the Log in as a SysAdmin must adhere to the following requirements:

  • Configure the CCM for Luna Provider (lunaProvider.jar file) to ensure that you have copied this file to the CCM server in the /usr/local/apr/lib directory. You will need to restart the 'mgmtserver' service.

  • Each tenant requires a unique encryption key.

  • The CCM instance that interacts with the CloudHSM server must reside inside the same VPC as the CCM.

  • Reboot the CCM before re-establishing the connection to the CloudHSM.

Other References

  1. Safenet Luna WebHelp
  2. AWS CloudHSM
  3. AWS CloudHSM Getting Started Guide
  4. AWS CloudHSM Forum
  5. Connecting Multiple VPCs with EC2 Instances (SSL)
© 2017-2019 Cisco Systems, Inc. All rights reserved