...
| Note |
|---|
IDM 24.R1 makes a number of significant changes compared to earlier releases! Important: Most descriptors need to have their certificates and keys bootstrapped before starting the application(s) for the first time. |
The sign and encrypt engine is the central component of Identity Manager for signing, verification and encryption using keys and certificates. It handles several use cases, and most of them have to be configured for each deployment, so that the private keys are kept secret. The keys themselves can be stored in files or preferably on a Hardware Security Module (HSM) for increased security.
...