Supported hardware security modules
PingFederate supports multiple configurations for secure material storage and processing.
When configuring a fresh setup of a PingFederate cluster with active and passive admin nodes and hardware security modules (HSM), you must designate one of the console nodes as the default active console. You can do this in the Configure the default active console first, and start it up before starting any passive consoles. This allows the passive consoles to synchronize their configurations with the default active console, which contains the necessary default SSL server certificate generated by the active console at its start-up. If you fail to configure a default active console, the passive console’s
To learn more, see Active and passive administrative nodes. |
PingFederate supports the following modules:
-
AWS CloudHSM
-
Thales Luna Network HSM
-
Entrust nShield Connect HSM