我已阅读 AWS CloudHSM 中的文档。
我尝试使用以下命令导入证书
pkcs11-tool --module /opt/cloudhsm/lib/libcloudhsm_pkcs11.so -l --pin <my_pin> --write-object my_self_signed_cert.der --type cert --id 123
我得到了输出
SDK Version: 2.03
Using slot 0 with a present token (0x1)
C_CreateObject failed with error CKR_TEMPLATE_INCOMPLETE : 0x000000d0
error: PKCS11 function C_CreateObject failed: rv = CKR_TEMPLATE_INCOMPLETE (0xd0)
Aborting.
有谁知道如何解决这个问题?
在此先感谢您的帮助。
AWS CloudHSM does not support importing certificate as of now. It only allows importing keys. For importing keys in AWS CloudHSM you should use the tool provided by AWS CloudHSM only. The link for the same is https://docs.aws.amazon.com/cloudhsm/latest/userguide/manage-keys.html. Follow all the steps mentioned in the official documentation before importing keys. You have to do all the setup and configuration to get access to your AWS CloudHSM.