While performing the procedure “HSM in a Primary-Standby Oracle Key Vault Installation” under Vendor Specific Notes - nCipher on Oracle Key Vault 12.2.0.5.0 and earlier, use the following commands:

• Perform the following manual steps on the intended primary as user oracle:

  $ ssh support@okv_primary_instance
  <Enter password when prompted>
  $ su root
  root# su oracle
  oracle$ cd /usr/local/okv/hsm/wallet
  oracle$ scp cwallet.sso support@(standby):/tmp
  oracle$ scp enctdepwd support@(standby):/tmp

• Perform the following manual steps on the intended standby as user root:

  $ ssh support@okv_standby_instance
  <Enter password when prompted>
  $ su root
  root# cd /usr/local/okv/hsm/wallet
  root# mv /tmp/enctdepwd .
  root# mv /tmp/cwallet.sso .
  root# chown oracle *
  root# chgrp oinstall *

While performing the procedure Enable HSM in a Primary-Standby Oracle Key Vault Installation on Oracle Key Vault 12.2.0.5.0 and earlier, use the following commands.

• Perform the following manual steps on the primary node as user oracle:

  $ cd /usr/local/okv/hsm/wallet
  $ scp cwallet.sso support@standby:/tmp
  $ scp enctdepwd support@standby:/tmp
  

• Enable the HSM_ENABLED parameter in the okv_security.conf file:

  $ cd /usr/local/okv/hsm/wallet
  $ mv /tmp/enctdepwd .
  $ mv /tmp/cwallet.sso .
  $ chown oracle *
  $ chgrp oinstall *
  $ vi /usr/local/okv/etc/okv_security.conf
     Set HSM_ENABLED="1"
     Set HSM_PROVIDER="<provider value>"

  Save and quit by entering the following sequence of characters in the vi file: :wq!