Primus HSM PKCS#11 Provider

Install and configure the Primus PKCS#11 API Provider on all machines that are running HashiCorp Vault Enterprise.

To check that the PKCS#11 API Provider is correctly installed, check that you can connect to the HSM:

ppin --test

Load config file: '/etc/primus/primus.cfg'

hsm0: Connect to ch01-api.cloudshsm.com port 2310, firmware: RX-2.10.0-T
          slot0 (id=0), user=MYVAULT: OK
          slot1 (id=3), user=TESTPARTITION: CKR_TOKEN_NOT_PRESENT

Note down the slot id, as you will need them for the vault configuration.

Troubleshooting

If you run into problems, see the PKCS#11 troubleshooting section.

Get started withCloudHSM for free.

Need help?Contact Support.

Other questions?Ask Sales.