This guide contains all the infromation you need to get started with the KMIP Server Gateway (KSG). It outlines the steps needed to install and configure the server. KSG takes KMIP client requests and translates them into PKCS#11 API calls and then takes the PKCS#11 API call results and converts them back into KMIP responses and sends them to the requesting client. KSG runs on Windows and any flavor or Linux.
There are many ways to get help using KSG.
For this version of KSG the user must configure KSG's PKCS#11 module to talk to the user's HSM. In addition, the user must set up a TLS proxy to take incoming TLS requests and forward them to KSG (e.g., Stunnel) [in a future release KSG will have its own TLS server protocol handling as an option]. Here are the KSG set up steps.
Note, to run the p6pkcs11tool on Linux currently requires setting LD_LIBRARY_PATH the to "<installed path>../components" directory so it can dynamically load libp6pkcs11.so, which is P6R's PKCS#11 library implementation. Otherwise, an error that the shared library cannot be found will be returned.
See KSG Setup for more detailed setup information.