| Sun Crypto Accelerator 4000 Board Version 2.0 Installation and User's Guide |     |
| Sun Crypto Accelerator 4000 Board Version 2.0 Installation and User's Guide | |
Sun Crypto Accelerator 4000 Board Version 2.0 Installation and User's Guide
817-6972-10
|
Contents |
Supported Cryptographic Protocols
Cryptographic Algorithm Acceleration
Supported Cryptographic Algorithms
Sun Crypto Accelerator 4000 MMF Adapter
Sun Crypto Accelerator 4000 UTP Adapter
Dynamic Reconfiguration and High Availability
Hardware and Software Requirements
2. Installing the Sun Crypto Accelerator 4000 Board
Installing the Sun Crypto Accelerator 4000 Software With the install Script
Version 1.1 and 2.0 Software Contained on the CD-ROM
To Install the Software With the install Script
Removing the Sun Crypto Accelerator 4000 Software With the remove Script
To Remove the Software With the remove Script on the CD-ROM
To Remove the Software With the /var/tmp/crypto_acc.remove Script
Installing the Software Without the install Script
Version 1.1 and 2.0 Software Contained on the CD-ROM
To Install the Software Without the install Script
Removing the Software Without the remove Script
To Remove the Software Without the remove Script
3. Configuring Driver Parameters
Ethernet Device Driver (vca) Parameters
Network Driver Parameter Values and Definitions
Setting Parameters Using the ndd Utility
To Specify Device Instances for the ndd Utility
Noninteractive and Interactive Modes
Setting Autonegotiation or Forced Mode
To Disable Autonegotiation Mode
Setting Parameters Using the vca.conf File
To Set Driver Parameters Using a vca.conf File
Setting Parameters for All Sun Crypto Accelerator 4000 vca Devices With the vca.conf File
To Set Parameters for All vca Devices With the vca.conf File
Cryptographic and Ethernet Driver Operating Statistics
Cryptographic Driver Statistics
Reporting the Link Partner Capabilities
To Check Link Partner Settings
IPsec In-Line Acceleration Statistics
Configuring the Network Host Files
IPsec Hardware Acceleration Configuration
Enabling Out-of-Band IPsec Acceleration
Enabling In-Line IPsec Acceleration
To Enable In-Line IPsec Hardware Acceleration
Enabling AES Encryption/Decryption
4. Administering the Sun Crypto Accelerator 4000 Board
Logging In and Out With vcaadm
Logging In to a Board With vcaadm
Logging Out of a Board With vcaadm
Quitting the vcaadm Utility in Interactive Mode
Initializing the Board With vcaadm
To Initialize the Board With a New Keystore
Initializing the Board to Use an Existing Keystore
To Initialize the Board to Use an Existing Keystore
Managing Keystores With vcaadm
Populating a Keystore With Security Officers
Populating a Keystore With Users
Listing Users and Security Officers
Locking the Keystore to Prevent Backups
Managing Multi-Admin Mode With vcaadm
Performing a Software Zeroize on the Board
Using the vcaadm diagnostics Command
Assigning Different MAC Addresses to Multiple Boards Installed in the Same Server
To Assign Different MAC Addresses From a Terminal Window
To Assign Different MAC Addresses From the OpenBoot PROM Level
5. Building PKCS#11 Applications for Use With the Sun Crypto Accelerator 4000 Board
Configuring Sun Metaslot to Use the Sun Crypto Accelerator 4000 Keystore
Configuring Secure Failover for Sun Metaslot
Developing Applications to Use PKCS#11
Sun Crypto Accelerator 4000 PKCS#11 Implementation Specifics
6. Installing and Configuring Sun ONE Server Software
Administering Security for Sun ONE Web Servers
Before Configuring Sun ONE Web Servers
Overview of Enabling Sun ONE Web Servers
Installing and Configuring Sun ONE Web Server 6.1
To Install Sun ONE Web Server 6.1
Configuring Sun ONE Web Server 6.1
To Register the Board With the Web Server
To Generate a Server Certificate
To Install the Server Certificate
To Enable the Web Server for SSL
Configuring Sun ONE Web Servers to Start Up Without User Interaction on Reboot
To Create an Encrypted Key for Automatic Startup of Sun ONE Web Servers on Reboot
7. Installing and Configuring Apache Web Server Software
Creating a Private Key and Certificate
To Create a Private Key and Certificate
To Enable the Apache Web Server
8. Diagnostics and Troubleshooting
Performing vcadiag Diagnostics
Using kstat to Determine Cryptographic Activity
Using the OpenBoot PROM FCode Self-Test
Performing the Ethernet FCode Self-Test Diagnostic
Troubleshooting the Sun Crypto Accelerator 4000 Board
Sun Crypto Accelerator 4000 MMF Adapter
Sun Crypto Accelerator 4000 UTP Adapter
Zeroizing the Sun Crypto Accelerator 4000 Hardware to the Factory State
To Zeroize the Sun Crypto Accelerator 4000 Board With a Hardware Jumper
| Sun Crypto Accelerator 4000 Board Version 2.0 Installation and User's Guide | 817-6972-10 | |
Copyright © 2005, Sun Microsystems, Inc. All Rights Reserved.