2.8K reads
4 comments
Hi, thanks for this post! I initially set up the HSM using your write-up. Recently I have upgraded to v4.70.0.0, and I am getting CKR_PIN_TOO_WEAK when I am trying to set user PIN, regardless how complex the PIN is. What is the password policy for User PIN?
I don't know the password policy offhand but trying to remember when I did this, I used a complex password instead of a 'traditional' PIN to get around this.
Tim Schindler Thanks for your reply. I did the same with password and in fact generated >100 characters passwords as well as passphrases. However, none of those helped. I think it might be a bug.
Now I have the solution. In v4.70 the security regulations are changed. After creating a SO user, the SO user password needs to be changed before the SO user can set a normal user PIN.