Generate RSA key pair on the Vectera Plus
Perform the following steps to generate a RSA key pair for Bitwarden on the :
Run the fxcli-hsm program.
Connect to the Admin TLS port on the HSM by using the connect tcp command.
Before connecting, you must configure the TLS certificates in FXCLI by using the tls commands. For additional details, see the FXCLI HSM technical reference on the Futurex Portal.
Log in with both default Admin identities. When prompted, enter the username and password. Run the following command twice (once for Admin1 and once for Admin2):
Run the following command to generate a new private key in the next available key slot on the . You need this key in step 6 to create a self-signed certificate.
Run the following command to assign the value Bitwarden to the label PKCS #11 attribute of the bitwarden_privatekey key created in the preceding step:
The value set in the --slot flag must match the key slot where you created the bitwarden_privatekey.
Run the following command to create a self-signed certificate by using the private key generated on the HSM in the preceding step 4: