Hardware Security Operations
To perform an operation on the Hardware Security Module (HSM) or the firewall connected to the HSM, select DeviceSetupHSM and select one of the following Hardware Security Operations:
|Hardware Security Operations|
Setup Hardware Security Module
Configures the firewall to authenticate with an HSM.
Show Detailed Information
Displays information about HSM servers, HSM high availability status, and HSM hardware.
Synchronize with Remote Filesystem (Thales nShield Connect only)
Synchronizes the key data from the Thales nShield remote file system to the firewall.
Removes all HSM connections to the firewall. You must repeat all authentication procedures after resetting the HSM configuration.
Select HSM Client Version (SafeNet Network only)
Allows you to choose the version of software running on the HSM client (the firewall). The HSM client version must be compatible with the HSM server version. See the HSM vendor documentation for a matrix of client-server version compatibility.
HSM Client Upgrade and SafeNet HSM Cluster Support
PAN-OS® 8.1 supports Thales nShield client 12.30 and SafeNet client versions 5.4.2 and 6.2.2. SafeNet HSM servers support an HA cluster of up to 16 ...
Set Up Connectivity with a Thales nShield Connect HSM
Set Up Connectivity with a Thales nShield Connect HSM You must set up a remote file system (RFS) as a hub to synchronize key data ...
Hardware Security Module Status
Hardware Security Module Status The Hardware Security Module Status includes the following information about HSMs that have been successfully authenticated. The display is different depending ...
Hardware Security Module Provider Settings
Hardware Security Module Provider Settings To configure a Hardware Security Module (HSM) on the firewall, edit the Hardware Security Module Provider settings: Hardware Security Module ...
Set Up Connectivity with an HSM
Set Up Connectivity with an HSM HSM clients are integrated with PA-3000 Series, PA-3200 Series, PA-5000 Series, PA-5200 Series, PA-7000 Series, and VM-Series firewalls and ...
Store Private Keys on an HSM
Store Private Keys on an HSM For added security, you can use an HSM to secure the private keys used in SSL/TLS decryption for: SSL ...
Set Up Connectivity with a SafeNet Network HSM
Set Up Connectivity with a SafeNet Network HSM To set up connectivity between the Palo Alto Networks firewall (HSM client) and a SafeNet Network HSM ...
Manage the HSM Deployment
Manage the HSM Deployment You can perform the following tasks to manage your HSM deployment: View the HSM configuration settings. Select Device Setup HSM . ...
Hardware Security Module Provider Configuration and Status
Hardware Security Module Provider Configuration and Status The Hardware Security Module Provider section shows the HSM configuration settings and the connectivity status of the HSM. ...