Key Access Partition (KAP
) is an eDirectory
container is created underneath the Security Container.
Inside the Key Access Partition container, the WX (NDSPKISDKeyList)ObjectClass are created. The KAP and NDSPKISDKeyList objects represent the Security Domain for the tree.
Key server or list of servers, are assigned to be the NDSPKISDKeyServerDN attribute. The Key server's job is to hand out the SDI Keys and TreeKey to other NcpServers in the tree.
Any NcpServer can be added to the to be the NDSPKISDKeyServerDN attribute and therefore there can be multiple Security Domain Key server in a tree. (NICISDI Tree Key Provider Fault Tolerance)
There might be more information for this subject on one of the following: