Hello, I just got a Nitrokey HSM 2, and I’m trying to use it to build an internal PKI infrastructure. I have generated a root CA certificate on the HSM, and generated the intermediate CA on the HSM, I also generated a CSR from the intermediate certificate onto my computer. My next objective is to s…

Figured it out! My ca.ini file needed to be updated. Instead of using the -key field, I needed to reference the smartcard in the ini file: private_key = pkcs11:model=PKCS%2315%20emulated;manufacturer=www.CardContact.de;serial=DENK0104068;token=SmartCard-HSM%20%28UserPIN%29%00%00%00%00%00%00%…

Nitrokey Support

[PKI/CA] Nitrokey HSM Does Not Support Signing?

Nitrokeys

szszszsz December 1, 2020, 11:10am 14

@MagellanTX @Jedrzej_Dudkiewicz
Thank you for sharing!

@jan
Let’s add the last two replies to a separate troubleshooting section in the documentation.