Initializing the token

Edit online

Each adapter or PKCS #11 token must be initialized before it can be used successfully.

This initialization procedure involves setting a unique label to the token. This label allows applications to uniquely identify the token. Therefore, the labels should not be repeated. However; the API does not verify that labels are not re-used. This initialization can be done through a PKCS #11 application or by the system administrator using SMIT. If your token has a Security Officer PIN, the default value is set to 87654321. To ensure the security of the PKCS #11 subsystem, this value should be changed after initialization.

To initialize the token:

  1. Enter the token management screen by typing smit pkcs11.
  2. Select Initialize a Token.
  3. Select a PKCS #11 adapter from the list of supported adapters.

  4. Confirm your selection by pressing Enter.
    Note: This will erase all information on the token.
  5. Enter the Security Officer PIN (SO PIN) and a unique token label.

If the correct PIN is entered, the adapter will be initialized or reinitialized after the command has finished running.