Entropy daemon on HP Integrity NonStop Server

OpenSSL requires a source of random data for providing strong cryptographic operations. Random number generation is a capability that is usually provided by the operating system or by a system-wide daemon process. The HP Integrity NonStop Server operating system does not provide this capability within the operating system.

When we are using the TLS support supplied with the IBM MQ client for HP Integrity NonStop Server, a process that is called an entropy daemon is needed to provide the source of random data. When you start a client channel that requires TLS, OpenSSL expects an entropy daemon to be running and providing its services on a socket in the OSS file system at /etc/egd-pool.

An entropy daemon is not provided by the IBM MQ client for HP Integrity NonStop Server. The IBM MQ client for HP Integrity NonStop Server is tested with the following entropy daemons:

amqjkdm0 (as provided by the IBM MQ 5.3 server)
/usr/local/bin/prngd (Version 0.9.27, as provided by HP Integrity NonStop Server Open Source Technical Library)

Parent topic: Set up security on HP Integrity NonStop Server