-
Create a master key based on the existing key.
# gpg --expert --full-generate-key
-
Select option (14) Existing key from card. This will list the serial number of the HSM slot and existing keys which has a corresponding certificate.
GPG command to select existing key from HSM
-
Enter the number for the keys you want to use.
List existing keys on HSM through GPG & selecting key number
-
Enter “Q” then provide key expiry, real name, and email address. Provide slot PIN when prompted.
Finishing GPG Key Generate Command
-
List the keys.
# gpg --list-keys
GPG list keys