Edit the Futurex CSP configuration file
The fxpkcs11.cfg file enables you to set the FXPKCS #11 library to connect to the . To edit the file, run a text editor as an Administrator on Windows or root on Linux and edit the configuration file accordingly. Most notably, you must set the fields described in this section inside the <KMS> section of the file.
Our CSP module expects to find the config file in a certain location (C:\Program Files\Futurex\fxcsp\fxpkcs11.cfg for Windows), but you can override that location by using the FXPKCS11_CFG environment variable.
To configure the fxpkcs11.cfg file, edit the following sections of the partial file sample:
Parameter
Description
<SLOT>
Can leave it set to the default value of 0.
<PROD-TLS-ENABLED>
<PROD-TLS-ANONYMOUS>
<PROD-TLS-CA>
Define the location of the CA certificates with one or more instances of this tag. In this example, there is only one CA certificate.
<PROD-TLS-KEY>
Set the location of the client private key. Supported formats for the TLS private key are PKCS #1 clear private keys, PKCS #8 encrypted private keys, or a PKCS #12 file that contains the private key and certificates encrypted under a password.
<PROD-TLS-KEY-PASS>
Set the password of the PKCS #12 file, if necessary.
<FX-LOAD-BALANCE>
In the <CONFIG> section of the file, you must set <UNIQUE-CONNECTIONS> to YES.
In the <CONFIG> section of the file, you must also add the following define: