Prerequisites
To install and use Securosys' Secret Engine plugin for HashiCorp Vault, you will need the following elements.
1. Hardware Security Module (HSM)
Depending on your security architecture, you will require the following products/licenses:
- Cloud
- On-premises
Securosys CloudHSM subscription:
With Multi-Authorization Workflow:
- Transaction Security Broker (TSB) Server as a Service Economy (ECO), or
- Transaction Security Broker (TSB) Server as a Service Sandbox (SBX)
Without Multi-Authorization Workflow:
- CloudHSM Economy (ECO) and CloudHSM REST API Economy (ECO), or
- CloudHSM Sandbox (SBX) and CloudHSM REST API Sandbox (SBX)
CloudHSM TSBaaS is included in CloudHSM Economy (ECO) or Sandbox (SBX) services.
With Multi-Authorization Workflow:
- Transaction Security Broker (TSB) Server Software License
- Securosys Primus HSM with:
- Attestation License
- Smart Key Attribute (SKA) License
Without Multi-Authorization Workflow:
- Transaction Security Broker (TSB) Server Software License
- Primus HSM with:
- Attestation License
2. Transaction Security Broker (TSB)
Ensure that Transaction Security Broker (TSB) is installed, configured and updated to version TSB Software v.1.18.0 or higher.
- Cloud
- On-premises
- Download Transaction Security Broker (TSB) Software (account required).
- How to install and configure TSB on-premises?
- Download TSB Software (account required).
Ensure that your Securosys Primus HSM is updated to Primus HSM Firmware v2.8.21, v2.11 or higher.
- Download the latest Securosys Primus HSM firmware (account required)
For the initial setup of your Securosys Primus HSM:
- Please follow the procedures outlined in Chapter 3 of the Primus HSM User Guide.
- Ensure that the settings align with the Transaction Security Broker (TSB) requirements specified in this section.
3. Docker Engine
To use Securosys's Secret Engin plugin for HashiCorp Vault, Docker Engine must be installed and running on your system. Install Docker Engine on:
In this guide, we will use Linux Ubuntu 22 (amd 64). For other operating systems and Linux distributions, please refer to the referenced guides.