Troubleshooting

Testing Plugin connectivity

Use this command to see if the connection by the plugin to the CloudHSM or Primus HSM via the Transaction Security Broker (TSB) can be established:

./notation-securosys check-connection 

HSM Connectivity

For connectivity details, see this page or ask your HSM administrator. Double-check your settings.

Testing TSB connectivity

Connectivity to the TSB can be tested using the curl command below or via swaggerUI. Note that this only tests connectivity to the TSB, but not through to the HSM. Adapt <TSB_APIendpoint>, <yourBearerToken> for your environment:

curl -X
    'GET' '<TSB_APIendpoint>/v1/versionInfo' \   
    -H 'accept: application/json' \
    -H 'Authorization: Bearer <yourBearerToken>'

Testing complete communication path

Connectivity through the TSB to the HSM infrastructure can be tested using the curl command below or via swaggerUI. Adapt <TSB_APIendpoint>, <yourBearerToken> for your environment:

curl -X
    'GET' '<TSB_APIendpoint>/v1/licenseInfo' \   
    -H 'accept: application/json' \
    -H 'Authorization: Bearer <yourBearerToken>'

Troubleshooting Primus HSM

Additional information can be obtained by reviewing the HSM logs.

To review the HSM logs of your on-premise Primus HSM please refer to the Primus HSM User Guide (account required) chapter 4.7.

Troubleshooting Notation

To learn how to troubleshoot Notation, see the Notation documentation.