3.1 Configuring the LPAR to use cryptographic devices Cryptographic coprocessors can be accessed by Linux from an LPAR or as a z/VM guest. The LPAR running Linux or z/VM must be configured to enable the cryptographic hardware. Linux access the cryptographic hardware using the z90crypt device driver. The driver supports the following cryptographic devices: PCI Cryptographic Coprocessor (PCICC) PCI Cryptographic Accelerator (PCICA) PCI-X Cryptographic Coprocessor (PCIXCC) Cryptographic Express2 Coprocessor (CEX2C) Cryptographic Express2 Accelerator (CEX2A) The device driver uses hardware to enhance performance during SSL handshaking. It supports only clear-key functions (cryptographic operations used during the handshake) for: Public/private key encryption and decryption. RSA exponentiation Before configuring the LPAR, be aware of some restrictions: PCICC devices are not supported on the IBM Eserver® zSeries 990. If a PCICA device is installed, z/VM hides any PCICC and PCIXCC devices