Configure the Dedicated KMS User Management Utility in Windows

Learn how to configure the Dedicated KMS user management utility in Windows.

Complete the following steps to configure the user_mgmt_util.cfg utility.

  1. Ensure you have moved the pkey-c, cert-c, and partitionOwnerCert.pem files into the data directory, for example, c:\Program Files\Oracle\DedicatedKMS\data. For more information, see Signing the CSR.

  2. Open the user_mgmt_util.cfg in a text editor to validate the installation location and DNS name of the HSM.
  3. If required, update hostname field with DNS value available on the OCI Console. For more information, see Getting HSM Cluster DNS Name.
  4. If required, update port field with user management utility port value available on the OCI Console. For more information, see Getting HSM Cluster Port Details.
Output

{
   "ssl":{
      "certificate":"c:\Program Files\Oracle\DedicatedKMS\data\cert-c",
      "pkey":"c:\Program Files\Oracle\DedicatedKMS\data\pkey-c",      
      "CApath": "c:\Program Files\Oracle\DedicatedKMS\data\certs",
      "owner_cert_path":"c:\Program Files\Oracle\DedicatedKMS\data\partitionOwnerCert.pem"
},
   "mutual_auth":{
      "e2e_mutual_auth_cert_path":"",
      "e2e_mutual_auth_pkey":""
   },
 "servers":[
      {
        "hostname": "<DNS of HSM Cluster>",
        "port": <port>
      }
   ],
   "logging":{
      "log_level":"INFO",
      "logfiles_location":"c:\Program Files\Oracle\DedicatedKMS\logs"
   }
}