Server Xg Requirements

Certificate Authority Requirements

PDF The Digi-CA™ Server Xg is completely customizable and can be installed across many servers, even if they are in different locations. A Trust Centres example would use four servers and if the correct internet connection and a VPN can be provided to the server, it is possible that much of the installation of the software can be carried out virtually. However, the Digi-CA™ Server Xg will require at least one site visit from a Digi-CAST™ Team Member to conduct certain specialist tasks.

The benefit of using the VPN connection as much as possible is that it reduces the cost of travel and accommodation. When examining each of the following three sub sections you can consult with the Digi-CAST2™ Team at any time to check configurations and access for you.

Xg Physical Environment

These are the minimum suitable conditions for the correct operation of the multiple server Digi-CA™ Server Xg:

            • Two dry areas with good ventilation or air-conditioning
            • Two secure rooms or computer cabinets with restricted, controlled and logged access
            • Broadband or leased line internet access
            • Power supply with optional backup power supply
            • Availability of IT Professional (MCSE or higher/other on a part-time basis, 4-hour call-in contract will suffice) with good working knowledge of computers, networking and general knowledge of TCP/IP protocols

Xg Equipment Specification

These are the minimum equipment specification for the correct operation of the multiple server Digi-CA™ Server Xg:

            • 4+ x Servers: Dell®/Compaq (FreeBSD 5.4+ compatible)
            • Eracom / nCipher HSM
            • Processor: Intel® Pentium® III family
            • Memory: 512MB RAM
            • Hard Drive: 15 GB SCSI/ATA
            • SCSI Controller (optional)
            • RAID Controller: RAID PERC 3/4/SC (optional)
            • 100/10 MB Intel® Compatible Network Card
            • CD-RW/DVD 4x Combo
            • Monitor
            • Keyboard
            • Router
            • Software/Hardware Firewall (optional)

Digi-CA™ Server Xg is supplied ready for total installation on the desired number of servers. There is no requirement for any Operating System [OS] or pre-configuration, whatsoever. In fact, if the servers are not completely free of any OS or software, they must be formatted to return them to their original ‘as manufactured’ state.

During the installation, the Digi-CA™ will use versions of the following software that will be hardened and modified by the Digi-CAST2™ Team during their installation work:

            • OpenSSL
            • mod_SSL
            • Apache
            • PHP
            • cURL
            • OpenLDAP
            • BerkeleyDB
            • MySQL
            • WebMin

The above list is provided for information purposes only.

Xg Installation Requirements

These are the minimum requirements for the correct installation of the multiple server Digi-CA™ Server Xg:

            • Hardware as per Equipment Specification
            • FreeBSD 5.4+ installed
            • 512Kbs network (via Internet) access to the server
            • VPN software installed and tested (optional)
            • VPN client software sent to Digi-CAST2™ (optional)
            • SSH interface to the server
            • ‘Root’ login credentials for remote server access