Configure the Dedicated KMS User Management Utility in Windows
Learn how to configure the Dedicated KMS user management utility in Windows.
Complete the following steps to configure the user_mgmt_util.cfg
utility.
-
Ensure you have moved the
pkey-c
,cert-c
, andpartitionOwnerCert.pem
files into the data directory, for example,c:\Program Files\Oracle\DedicatedKMS\data
. For more information, see Signing the CSR. - Open the
user_mgmt_util.cfg
in a text editor to validate the installation location and DNS name of the HSM. - If required, update hostname field with DNS value available on the OCI Console. For more information, see Getting HSM Cluster DNS Name.
- If required, update port field with user management utility port value available on the OCI Console. For more information, see Getting HSM Cluster Port Details.
Output
{
"ssl":{
"certificate":"c:\Program Files\Oracle\DedicatedKMS\data\cert-c",
"pkey":"c:\Program Files\Oracle\DedicatedKMS\data\pkey-c",
"CApath": "c:\Program Files\Oracle\DedicatedKMS\data\certs",
"owner_cert_path":"c:\Program Files\Oracle\DedicatedKMS\data\partitionOwnerCert.pem"
},
"mutual_auth":{
"e2e_mutual_auth_cert_path":"",
"e2e_mutual_auth_pkey":""
},
"servers":[
{
"hostname": "<DNS of HSM Cluster>",
"port": <port>
}
],
"logging":{
"log_level":"INFO",
"logfiles_location":"c:\Program Files\Oracle\DedicatedKMS\logs"
}
}