Create an OSKS with HSM in vSEC:CMS
Perform the following steps to create an Operator Service Key Store (OSKS) with HSM in vSEC:CMS.
Start the vSEC Admin application.
When prompted, insert your System Owner (SO) hardware credential.
Enter the operator passcode for the System Owner and click [ Authenticate ].
If authentication is successful, the Admin application starts, and you are logged in to the Operator Console.
In the navigation menu, select Options > Operators.
Select [ Add service key store ] to open the Add Service Key Store (HSM) dialog.
Select the Futurex PKCS #11 library in the Key store drop-down menu, specify a Store name, and select [ Add ].
Enter the operator passcode for the System Owner, and select [ OK ].
The new service key store is created, and the master keys are stored on the . You should see a message confirming that the operation succeeded.
Now, all administration key operations performed with the vSEC, such as registering a smart card token or PIN unblock operations, use the master keys stored in .