Hello I want to use the Nitrokey HSM to store keys and certificates for automated processes with signtool.
Now signtool can’t be called with the User PIN as parameter. That’s why I would like to change the authentication method to an n-of-m (1 of 1) Authentication. Where a private key is stored on the server and is able to authenticate the HSM without user interaction.
- Is this possible at all
- If no, is there another possibility to authenticate the HSM without user interaction
Edit: to clarify the procedure I want to use:
https://www.smartcard-hsm.com/docs/SmartCard-HSM_n-of-m_Authentication_V1.0_2015-03-25.pdf on page 11 it is shown how this is possible to set up with other smartcards. Instead i would prefer it to do on a server but am not sure if this is possible at all.