Skip to main content

Load the container images and application configs

In the previous step, you defined the containers that VaultContainers should run. In this step, you will load the container images and application config files from an USB stick onto the HSM. Then, you will start and stop the containers.

Load the files on an USB stick

Load the relevant files onto an USB stick. Alternatively, if you have configured WebDAV on your HSM, put them onto the WebDAV share. See section 4.4.7 of the Primus User Guide E25 for how to set up WebDAV.

For Securosys-provided containers, the images are .container files and the application configs are .yml files.

Load the files onto the HSM

  1. Activate SO.
  2. Insert the USB stick into the Primus HSM or the Decanus terminal.
  3. Load the container image and application files, and start the container:

Load the VaultCode image container:

SO >>> hsm_sec_container_load

Enter name!
 
SO >>> vaultcode      # If you want this container to be the one you run, you need to give it the same name as in .sconfig

Please choose a file by entering its number from the list:
1. vaultcode_testing.container
2. vaultcode.container
3. tsb-auto-approver.container
4. bitnami-postgresql.container
 
SO >>> 2

Load the respective configuration file that you want to use:

SO >>> hsm_sec_container_yaml_load

Enter name!
 
SO >>> application-hsm      # If you want this yml to be the one you run, you need to give it the same name as in .sconfig

Please choose a file by entering its number from the list:
1. application-tsb-performance-test-localhost.yml
2. application-automated-approval.yml
3. application-tsb-on-hsm.yml
4. application-hsm.yml
 
SO >>> 4

Lastly, start the container:

SO >>> hsm_sec_container_start

Enter name!
 
SO >>> vaultcode

Container started successfully!

Repeat this for all containers that you want to run (in particular, for VaultCode and the database).

Troubleshooting

To list details about the containers, images, and application configs, run diag containers:

>>> diag containers

Containers
vaultcode, status=running, image=vaultcode, port=8084, auto_start=enabled, yaml=application-hsm.yml, last_started=2025-08-13T11:26:24.651040101Z, last_finished=?
database, status=running, image=bitnami-postgresql, auto_start=enabled, yaml=MISSING, last_started=2025-08-13T11:26:24.651040101Z, last_finished=0001-01-01T00:00:00Z
tsb, status=running, image=tsb, port=8081, auto_start=enabled, yaml=application-automated-approval.yml, last_started=2025-08-13T11:26:24.651040101Z, last_finished=?
 
Images
tsb
tsb-old
bitnami/postgresql
bitnami-mariadb-galera
vaultcode
database
 
YAMLs
application-tsb-performance-test-localhost.yml
application-automated-approval.yml
application-tsb-on-hsm.yml
application-hsm.yml

To list all VaultContainers-related options, run help8:

>>> help8

Container platform commands (Active SO role needed):

Container commands:
  hsm_sec_container_start           - Start a container
  hsm_sec_container_stop            - Stop a container

Container image commands:
  hsm_sec_container_load            - Load a container image
  hsm_sec_container_update          - Update a loaded container image
  hsm_sec_container_delete          - Delete a loaded container image

Container configuration commands:
  hsm_sec_container_yaml_load       - Load a .yml file
  hsm_sec_container_yaml_update     - Update a loaded .yml file
  hsm_sec_container_yaml_delete     - Delete a loaded .yml file
Get started withCloudHSM for free.
Other questions?Ask Sales.
Last updated on
Feedback
Need help?