Primus HSM PKCS#11 Provider
Install and configure the Primus PKCS#11 API Provider on all machines that are running HashiCorp Vault Enterprise.
To check that the PKCS#11 API Provider is correctly installed, check that you can connect to the HSM:
ppin --test
Load config file: '/etc/primus/primus.cfg'
hsm0: Connect to a-api.cloudshsm.com port 2310, firmware: RX-2.10.0-T
slot0 (id=0), user=MYVAULT: OK
slot1 (id=3), user=TESTPARTITION: CKR_TOKEN_NOT_PRESENT
Note down the slot id, as you will need them for the vault configuration.
Troubleshooting
If you run into problems, see the PKCS#11 troubleshooting section.