Before you install the software

Adjust your computers power saving setting to prevent sleep mode.

You may also need to set power management properties of the HSM, once the Security World Software is installed. See Installing the Security World Software on Windows for more information.

Make sure that you have installed the latest Microsoft security updates. Information about Microsoft security updates is available from http://www.microsoft.com/security/.

The default location for %NFAST_HOME%\bin\ is C:\Program Files\nCipher\nfast. Because of the space in Program Files, nShield commands could fail if NFAST_HOME\bin\ is not in PATH.

If you cannot change PATH, you will have to enclose all file names and paths that use variable between double quotation marks (" "). For example:

Make sure that you have installed:

See the documentation supplied with your operating environment for information.

The installer automatically creates the following group and users if they do not exist. If you wish to create them manually, you should do so before running the installer. Create the following, as required:

The following versions of Java have been tested to work with, and are supported by, your nShield Security World Software:

Entrust recommends that you ensure Java is installed before you install the Security World Software. The Java executable must be on your system path.

If you can do so, please use the latest Java version currently supported by Entrust that is compatible with your requirements. Java versions before those shown are no longer supported. If you are maintaining older Java versions for legacy reasons, and need compatibility with current nShield software, please contact Entrust nShield Support, https://nshieldsupport.entrust.com.

To install Java, you may need installation packages specific to your operating system, which may depend on other pre-installed packages to be able to work.

Suggested links from which you may download Java software as appropriate for your operating system:

You must have Java installed to use KeySafe.

Entrust supply standard component bundles that contain many of the necessary components for your installation and, in addition, individual components for use with supported applications. To be sure that all component dependencies are satisfied, you can install either:

During the installation process, you are asked to choose which bundles and components to install. Your choice depends on a number of considerations, including:

On Windows, the nShield Hardware Support bundle and the nShield Core Tools bundle are mandatory, and are always installed.

On Windows, the Windows device drivers component is installed as part of the Hardware Support bundle. On Linux, the Kernel device drivers component is installed.

On Linux, you must install the hwsp component.

The Core Tools bundle contains all the Security World Software command-line utilities, including:

The Core Tools bundle includes the Tcl run time component that installs a run-time Tcl installation within the nCipher directories. This is used by the tools for creating the Security World and by KeySafe. This does not affect any other installation of Tcl on your computer.

You need to install the Remote Administration Service component if you require remote administration functionality. See Preparatory tasks before installing software and the User Guide for your module and operating system for more about the Remote Administration Service.

Always install all the nShield components you need in a single installation process to avoid subsequent issues should you wish to uninstall. You should not, for example, install the Remote Administration Service from the Security World installation media, then later install the Remote Administration Client from the client installation media.

Ensure that you have identified any optional components that you require before you install the Security World Software. See Software packages on the Security World installation media for more about optional components.