安裝適用於用戶端 3 SDK 的 AWS CloudHSM OpenSSL Dynamic Engine - AWS CloudHSM

本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。

安裝適用於用戶端 3 SDK 的 AWS CloudHSM OpenSSL Dynamic Engine

下列步驟說明如何安裝和設定具有用戶端 3 的 OpenSSL SDK AWS CloudHSM 動態引擎。如需關於升級的詳細資訊,請參閱 升級用戶端 SDK 3

安裝和設定 OpenSSL 引擎

  1. 使用以下命令下載並安裝 OpenSSL 引擎。

    Amazon Linux
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/EL6/cloudhsm-client-dyn-latest.el6.x86_64.rpm
    $ sudo yum install ./cloudhsm-client-dyn-latest.el6.x86_64.rpm
    Amazon Linux 2
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/EL7/cloudhsm-client-dyn-latest.el7.x86_64.rpm
    $ sudo yum install ./cloudhsm-client-dyn-latest.el7.x86_64.rpm
    CentOS 6
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/EL6/cloudhsm-client-dyn-latest.el6.x86_64.rpm
    $ sudo yum install ./cloudhsm-client-dyn-latest.el6.x86_64.rpm
    CentOS 7
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/EL7/cloudhsm-client-dyn-latest.el7.x86_64.rpm
    $ sudo yum install ./cloudhsm-client-dyn-latest.el7.x86_64.rpm
    RHEL 6
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/EL6/cloudhsm-client-dyn-latest.el6.x86_64.rpm
    $ sudo yum install ./cloudhsm-client-dyn-latest.el6.x86_64.rpm
    RHEL 7
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/EL7/cloudhsm-client-dyn-latest.el7.x86_64.rpm
    $ sudo yum install ./cloudhsm-client-dyn-latest.el7.x86_64.rpm
    Ubuntu 16.04 LTS
    $ wget https://s3.amazonaws.com/cloudhsmv2-software/CloudHsmClient/Xenial/cloudhsm-client-dyn_latest_amd64.deb
    $ sudo apt install ./cloudhsm-client-dyn_latest_amd64.deb

    OpenSSL 引擎安裝在 。 /opt/cloudhsm/lib/libcloudhsm_openssl.so

  2. 使用下列命令來設定名為 n3fips_password 的環境變數,其中包含加密使用者 (CU) 的登入資料。

    $ export n3fips_password=<HSM user name>:<password>