Breadcrumbs

PKCS#11 API Logging

  1. The Utimaco PKCS#11 library supports detailed logging for all cryptographic operations (e.g., key generation, slot login, and certificate handling).

  2. Logging is configured through the Utimaco ConfigMap (utimaco-config.yaml), which provides the file cs_pkcs11_R3.cfg mounted inside the container at /etc/utimaco/cs_pkcs11_R3.cfg.

  3. To enable logging, set the following parameters:

  • Logging = 1

  • Logpath = /var/log/utimaco/

  1. The log file cs_pkcs11_R3.log records API-level activities and helps diagnose issues such as PIN authentication failures, slot enumeration errors, or missing key labels.