How to Enable PKCS #11 Consumers to Use TPM as a Secure Keystore
To perform this procedure, you must install and enable TPM on the system. Ensure that the tcsd
daemon is also running.
You must assume the root
role. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.
Example 2-2 Enabling PKCS #11 Consumers to Use TPM
In this example, the TPM token is first assigned a new name. All subsequent actions on the token refer to the new name.
$ pktool inittoken currlabel=TPM newlabel=JanDoeTPM $ pktool setpin token=tpm/JanDoeTPM so $ pktool gencert token=tpm/JanDoeTPM -i $ pktool list token=tpm/JanDoeTPM