Toggle Nav

Entrust nShield Remote Administration

In stock
SKU:
nShield Remote Administration
  • 24×7 remote and on-site support
  • Multi-vendor solutions & services
  • Local billing in 33+ countries
  • Competitive Price

Control your HSMs from anywhere
nShield HSMs often run in physically secure, lights-out data centers in locations far from the people who manage them. nShield Remote Administration lets you manage your HSMs – including adding applications, upgrading firmware, and checking status – wherever and whenever you choose. This means less travel to data centers, helping you cut costs and optimize your resources.

Remote Administration uses the following components to locally manage remote HSMs:

  • Remote Administration cards—Custom smart cards equipped with an Entrust applet
  • Trusted verification devices (TVDs)— Entrust smart card readers used with Remote Administration cards to create a secure connection with the target HSM (includes Type A USB connector)
  • Remote Administration Client (RAC) software—Simple GUI run on client laptop or workstation to configure connection to HSM

hsm promo kit image

Operational features

Remote Administration lets you perform the vast majority of typical HSM functions including:

  • Configuring new nShield HSMs
  • Creating new nShield Security Worlds— Entrust’s unique key management architecture—and enrolling new HSMs into existing Security Worlds
  • Upgrading firmware and image files for maintenance and feature updates
  • Monitoring and changing HSM status and re-booting as required

Security features

Remote Administration includes the following to safeguard your transactions:

  • Mutual authentication between Remote Administration cards and HSM utilising factory-issued warrants (analogous to digital certificates) using Diffie-Hellman ephemeral key exchangeAES256- equivalent crypto connection between Remote Administration cards and HSM
  • HSM electronic serial number verification by the card holder
  • FIPS 140-2 certified firmware and Remote Administration cards
  • TVDs certified to Secoder protocol— inhibits malware on the client workstation from spoofing the HSM identity being passed to Remote Administration Cards

 

nShield Remote Administration Compatibility and Prerequisites

  • nShield Solo PCIe and Connect HSMs
  • nShield Solo+, Solo XC, Connect+ and Connect XC with Security World software v12.40 and higher
  • Remote Administration Client software is compatible with Microsoft Windows, Linux and OS X
  • nShield v12.00 and above software and 2.61.2 and above firmware.
  • Customer-supplied LAN or VPN and remote access solution.

Hypervisor Compatibility

The OVA can be installed on the following virtual platforms:

  • vSphere ESXi 6.0, ESXi 6.5
  • VMware Workstation 12, 14
  • VMware Fusion 10
  • Oracle VirtualBox 6.0

Hyper-V image can be installed on the following virtual platforms:

  • Microsoft Hyper-V, Azur

Remote Administration Kits

Remote Administration Kits contain the elements that enable Remote Administration on nShield HSMs. The kits contain one or more Trusted Verification Devices (TVDs) (secure USB-connected smart card readers), Remote Administration Cards (smart cards), and Remote Administration Client software and a license. Kits are sized and priced by tiers based on the number of HSMs in the estate.

FIPS certifications

Both the firmware supporting Remote Administration and the Remote Administration Cards are FIPS 140-2 Level 3 Certified.

Custom Solutions
Competative Prices
Global Logistics
24*7*365 Support