All Policy Servers can use a single key store for key rollover. The following figure illustrates:
Important! The r6.x key store must be configured separately from the r6.x policy store.
Important! The r12.0 SP2 Policy Servers must be configured with the r6.x key store. r6.x Policy Servers cannot communicate with an r12.0 SP2 key store.
Note: Although not illustrated, policy store and key store data can be replicated for failover. The database or directory server type determines how you replicate data. For more information about key management in a master/slave environment, see the Policy Server Administration Guide. For more information about replicating data, see your vendorspecific documentation.
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |