Why It Is Not Possible to Generate Security Server Authentication Key on HSM?

Problem

Why it is not possible to generate Security Server authentication key on HSM?

Solution

The authentication key is used in TLS which means that Java TLS implementation (JSSE) must be able to use it. It should be possible to use a HSM keystore with JSSE, but support for that has not been implemented or tested. More information at https://docs.oracle.com/javase/8/docs/technotes/guides/security/p11guide.html.

Related articles

• Page:
  How to Interpret Security Server Proxy Error Messages?
• Page:
  How to Set Up a Local Test Environment Using Docker Compose?
• Page:
  Security Server Cluster RHEL 8 (or RHEL 7) to RHEL 9 Upgrade
• Page:
  How to Upgrade Security Server to RHEL 9 Using a Configuration Backup?
• Page:
  How to Access the Security Server Postgres Database?