AnsweredAssumed Answered

CST - generate keys directly to HSM ?

Question asked by Tomas Klein on Aug 27, 2019
Latest reply on Sep 3, 2019 by Yuri Muhin


I would like you to ask, if there is any tutorial, how to use, which generate pki tree directly to the HSM ? In Code - Signing Tool - HSM, there is a part that, you write the private keys to the HSM. For my HSM, I can not write private key to HSM, I need to generate it on HSM. Now I used pkcs11-tool to generate key (pkcs11-tool --module /usr/lib/x86_64-linux-gnu/ -l --pin 123456 --keypairgen --key-type rsa:4096 --id 10
). Or do I need to modify the to use pkcs11-tool ?



Tomas Klein