PKCS#11 CryptoServer p11tool2 | Utimaco Integration Guides

>_Console

$ p11tool2 ListSlots=status
     slot ID   token init.   PIN init.
     ---------------------------------
  0: 00000000  no            no

If the response is yes yes the slot is already configured.

Setting up slot 0 is a two-step process. The first step is to log on as the ’Generic’ user, who is any set of users who have HSM admin credentials (such as the factory default ADMIN user). The Generic user is used to create the Security Officer (SO) PIN.

>_Console

rhel7# p11tool2 Slot=0 Login=ADMIN,/opt/cs/ADMIN.key Label={p11_slot_label}
   InitToken=654321

The ’p11_slot_label’ in the console text above should be notable and it will be required
below when providing the necessary configuration to the pkispawn instance.

TIP

You can chose something different for the PINS discussed here (and below), but remember
them for later use. Consider noting them somewhere.

The second step is to use the SO’s PIN to configure the User’s PIN, and reissue the ListSlots command to verify the steps completed correctly.

>_Console

$ p11tool2 Slot=0 LoginSO=654321 InitToken=123456
$ p11tool2 ListSlots=status
      slot ID   token init.   PIN init.
      ---------------------------------
   0: 00000000  yes           yes