Managing Encryption and Certificates in Oracle® Solaris 11.2

Exit Print View

Updated: September 2014

How to Manage Third-Party Plugins in KMF

You identify your plugin by giving it a keystore name. When you add the plugin to KMF, the software identifies it by its keystore name. The plugin can be defined to accept an option. This procedure includes how to remove the plugin from KMF.

  1. Install the plugin.
    % /usr/bin/kmfcfg install keystore=keystore-name \
    modulepath=path-to-plugin [option="option-string"]



    Specifies a unique name for the keystore that you provide.


    Specifies the full path to the shared library object for the KMF plugin.


    Specifies an optional argument to the shared library object.

  2. List the plugins.
    % kmfcfg list plugin
    keystore-name:path-to-plugin [(built-in)] | [;option=option-string]
  3. To remove the plugin, uninstall it and verify its removal.
    % kmfcfg uninstall keystore=keystore-name
    % kmfcfg plugin list
Example 4-8  Calling a KMF Plugin With an Option

In the following example, the administrator stores a KMF plugin in a site-specific directory. The plugin is defined to accept a debug option. The administrator adds the plugin and verifies that the plugin is installed.

# /usr/bin/kmfcfg install keystore=mykmfplug \
# kmfcfg list plugin
KMF plugin information:
----------------------- (built-in) (built-in) (built-in)
# kmfcfg modify plugin keystore=mykmfplug option="debug"
# kmfcfg list plugin
KMF plugin information:

The plugin now runs in debugging mode.