Sign and encrypt engine in Identity Manager
- Ylva Andersson
- Josefin Klang (Deactivated)
- David Banz
- Paul Zachos
This article includes updates for Identity Manager 5.0.1.
Before installing or upgrading
Read this article and its related pages before you proceed with a fresh installation or upgrade since the Identity Manager 5.0.1 release comes with significant changes compared to earlier versions.
Important information
Most descriptors must have their certificates and keys bootstrapped before starting the application(s) for the first time.
Sign and encrypt engine
The sign and encrypt engine is the central component of Identity Manager for signing, verification, and encryption using keys and certificates. It handles several use cases, like encryption and decryption of fields in the Identity Manager database, signing, verification, and encryption of the object history and more.
Most use cases have to be configured for each deployment, so that the private keys are kept secret. The sign and encrypt engine provides a consistent configuration of keys and certificates for both signing and encryption. You can define algorithms and parameters and reference keys from an HSM (for most use cases) or from PKCS#12 files (for all use cases).
Additional Information
Related content
Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions