Hi
I want to run SignServer with SafeNet Luna G5 (USB).
My environment is:
CentOS 5.8
JBoss 5.1.0.GA
OpenJDK 1.6.0_22
SignServer 3.2.2
HSM: SafeNet LunaG5
When I test the connection with HSM by ejbcaClientToolBox, everything are ok and I can generate key. But when I want to connect via SignServer, I got error.
The config in the qs_pdfsigner_configuration.properties is:
CLOB.WORKERGENID1=SIGNERTOKEN.CLASSPATH = org.signserver.server.cryptotokens.PKCS11CryptoToken
WORKERGENID1.DEFAULTKEY=pdfSignerKey
WORKERGENID1.KEYALG=RSA
WORKERGENID1.KEYSPEC=1024
WORKERGENID1.PIN=12345678
WORKERGENID1.SHAREDLIBRARY=/usr/lunag5/lib/libCryptoki2.so
WORKERGENID1.SLOT=1
WORKERGENID1.ATTRIBUTESFILE=/opt/signserver/pdfsigner/p11attributes.cfg
after running of jboss and signserver I wrote these commands:
./signserver.sh setproperties /opt/signserver/pdfsigner/qs_pdfsigner_configuration.properties
./signserver.sh reload 1
Everything are OK but after running:
./signserver.sh activatecryptotoken 1 12345678
I got this error:
Trying to activate crypto token of worker with id : 1
org.signserver.common.CryptoTokenAuthenticationFailureException: Failed to initialize PKCS11 provider slot '1'.
What is the problem?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
You should check the server.log of JBoss that should give you detailed information what happened, including the error code returned from the HSM if any connection was made.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi
I want to run SignServer with SafeNet Luna G5 (USB).
My environment is:
CentOS 5.8
JBoss 5.1.0.GA
OpenJDK 1.6.0_22
SignServer 3.2.2
HSM: SafeNet LunaG5
When I test the connection with HSM by ejbcaClientToolBox, everything are ok and I can generate key. But when I want to connect via SignServer, I got error.
The config in the qs_pdfsigner_configuration.properties is:
CLOB.WORKERGENID1=SIGNERTOKEN.CLASSPATH = org.signserver.server.cryptotokens.PKCS11CryptoToken
WORKERGENID1.DEFAULTKEY=pdfSignerKey
WORKERGENID1.KEYALG=RSA
WORKERGENID1.KEYSPEC=1024
WORKERGENID1.PIN=12345678
WORKERGENID1.SHAREDLIBRARY=/usr/lunag5/lib/libCryptoki2.so
WORKERGENID1.SLOT=1
WORKERGENID1.ATTRIBUTESFILE=/opt/signserver/pdfsigner/p11attributes.cfg
after running of jboss and signserver I wrote these commands:
./signserver.sh setproperties /opt/signserver/pdfsigner/qs_pdfsigner_configuration.properties
./signserver.sh reload 1
Everything are OK but after running:
./signserver.sh activatecryptotoken 1 12345678
I got this error:
Trying to activate crypto token of worker with id : 1
org.signserver.common.CryptoTokenAuthenticationFailureException: Failed to initialize PKCS11 provider slot '1'.
What is the problem?
You should check the server.log of JBoss that should give you detailed information what happened, including the error code returned from the HSM if any connection was made.