This topic provides instructions for installing the latest version of the PKCS #11 library for the AWS CloudHSM Client SDK 5 version series. For more information about the Client SDK or PKCS #11 library, see Using the Client SDK and PKCS #11 library.
With Client SDK 5, you are not required to install or run a client daemon.
To run a single HSM cluster with Client SDK 5, you must first manage client key
durability settings by setting disable_key_availability_check to
True. For more information, see Key
Synchronization and Client SDK 5 Configure
Tool.
For more information about the PKCS #11 library in Client SDK 5, see PKCS #11 library.
Note
To run a single HSM cluster with Client SDK 5, you must first manage
client key durability settings by setting
disable_key_availability_check to True.
For more information, see Key
Synchronization and Client SDK 5 Configure Tool.
To install and configure the PKCS #11 library
-
Use the following commands to download and install the PKCS #11 library.
Install the PKCS #11 library for Amazon Linux 2023 on X86_64 architecture:
$wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/Amzn2023/cloudhsm-pkcs11-latest.amzn2023.x86_64.rpm$sudo yum install ./cloudhsm-pkcs11-latest.amzn2023.x86_64.rpmInstall the PKCS #11 library for Amazon Linux 2023 on ARM64 architecture:
$wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/Amzn2023/cloudhsm-pkcs11-latest.amzn2023.aarch64.rpm$sudo yum install ./cloudhsm-pkcs11-latest.amzn2023.aarch64.rpm -
Use the configure tool to specify the location of the issuing certificate. For instructions, see Specify the location of the issuing certificate.
-
To connect to your cluster, see Bootstrap the Client SDK.
-
You can find the PKCS #11 library files in the following locations:
-
Linux binaries, configuration scripts, and log files:
/opt/cloudhsmWindows binaries:
C:\Program Files\Amazon\CloudHSMWindows configuration scripts and log files:
C:\ProgramData\Amazon\CloudHSM
-
