Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.futurex.com/llms.txt

Use this file to discover all available pages before exploring further.

This section offers a quick reference to key prerequisites, high-level implementation steps, and post-implementation validation and follow-up tasks related to the integration.

Pre-implementation

  • Install dependencies
    • OpenSC (from source or with package manager under opensc)
    • Ansible
    • SSH Server
  • Check OpenSSL version (v3.0 or newer)
  • Admin privileges on the KMES Series 3

Implementation

  • Install Futurex PKCS #11 module (FXPKCS11)
  • Configure KMES Series 3
    • Create a new application partition (KMES Series 3 role)
    • Create a new identity and give it access to the newly created application partition
    • Enable necessary Host API commands
    • Configure TLS with server-side authentication
  • Edit FXPKCS11 configuration file
  • Install and configure pkcs11-provider

Post-implementation

  • Set up test environment
    • Generate a key pair in the HSM
    • Create a password file
    • Create a test .txt file with sample data
    • Copy encrypt.yml and decrypt.yml playbooks into the test directory
    • Create an inventory file
  • Run the example encrypt.yml and decrypt.yml playbooks to demonstrate the KMES Series 3’s role in Ansible Vault integration