Menu
▾
▴
Re: [Ejbca-develop] Deploy EJBCA 6.2.0 with AEP HSM
|
From: Damian W. <Dam...@ru...> - 2015-04-07 14:27:33
|
Hi together,
I have absolutely the same problem.
In my case I am using a Thales connect 500 as keystore.
With EJBCA version 6_0_3 everything is running fine.
Now I tried to use the EJBCA version 6_2_0 and got the same error:
ejbca:init:
[echo]
[echo] ------------------- CA Properties ----------------
[echo] ca.name : ManagementCA
[echo] ca.dn : CN=ManagementCA,O=EJBCA Sample,C=SE
[echo] ca.tokentype :
org.cesecore.keys.token.PKCS11CryptoToken
[echo] ca.keytype : RSA
[echo] ca.keyspec : 2048
[echo] ca.signaturealgorithm : SHA1WithRSA
[echo] ca.validity : 3650
[echo] ca.policy : null
[echo] ca.tokenproperties :
/home/damian/ejbca/newHsm/ejbca_ce_6_2_0/conf/catoken.properties
[echo] httpsserver.hostname : localhost
[echo] httpsserver.dn : CN=localhost,O=EJBCA Sample,C=SE
[echo] superadmin.cn : SuperAdmin
[echo] superadmin.dn : CN=SuperAdmin
[echo] superadmin.batch : true
[echo] appserver.home :
/home/damian/ejbca/newHsm/jboss-as-7.1.1.Final
[echo]
ejbca:install:
ejbca:initCA:
[echo] Initializing CA with 'ManagementCA' 'CN=ManagementCA,O=EJBCA
Sample,C=SE' 'org.cesecore.keys.token.PKCS11CryptoToken'
<ca.tokenpassword hidden> '2048' 'RSA' '3650' 'null' 'SHA1WithRSA'
/home/damian/ejbca/newHsm/ejbca_ce_6_2_0/conf/catoken.properties
-superadmincn 'SuperAdmin'...
[java] SETTING: --caname as ManagementCA
[java] SETTING: --dn as CN=ManagementCA,O=EJBCA Sample,C=SE
[java] SETTING: --tokenType as
org.cesecore.keys.token.PKCS11CryptoToken
[java] SETTING: --tokenPass as null
[java] SETTING: --keyspec as 2048
[java] SETTING: --keytype as RSA
[java] SETTING: -v as 3650
[java] SETTING: --policy as null
[java] SETTING: -s as SHA1WithRSA
[java] SETTING: -superadmincn as SuperAdmin
[java] ERROR: Incorrect parameter usage.
[java] The following arguments are unknown:
[java]
/home/damian/ejbca/newHsm/ejbca_ce_6_2_0/conf/catoken.properties
[java]
[java] Run command with "--help" to see full manual page.
Here is also my configuration:
# catoken.properties
defaultKey defaultRoot
testKey test
keyEncryptKey cryptRoot
hardTokenEncrypt cryptRoot
pin dummy
slotLabelType SLOT_INDEX
slotLabelValue 1
sharedLibrary /opt/nfast/toolkits/pkcs11/libcknfast.so
# install.properties
# ------------ Administrative CA configuration ---------------------
ca.name=ManagementCA
ca.dn=CN=ManagementCA,O=EJBCA Sample,C=SE
ca.tokentype=org.cesecore.keys.token.PKCS11CryptoToken
ca.tokenpassword=null
ca.tokenproperties=/home/damian/ejbca/newHsm/ejbca_ce_6_2_0/conf/catoken.properties
ca.keyspec=2048
ca.keytype=RSA
ca.signaturealgorithm=SHA1WithRSA
ca.validity=3650
ca.policy=null
Did you change something in catoken.properties???
Cheers from Germany
Damian
Am 23.03.2015 um 11:36 schrieb Anh Pham Van The (FIS FPS HN):
> Dear all,
> I installing EJBCA version 6.2.0 use CA key created into AEP HSM
> Enterprise.
> I run "ant bootstrap" is successful but when I run "ant install" then
> have an error.
> Can you check and get me a recommend?
> Please check attach file for more information include: error screen
> shot, catoken.properties file.
>
> Thank you,
> Mr. Anh
> From Hanoi, Vietnam.
>
>
> ------------------------------------------------------------------------------
> Dive into the World of Parallel Programming The Go Parallel Website, sponsored
> by Intel and developed in partnership with Slashdot Media, is your hub for all
> things parallel software development, from weekly thought leadership blogs to
> news, videos, case studies, tutorials and more. Take a look and join the
> conversation now. http://goparallel.sourceforge.net/
>
>
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
|
