Setting environment variables

Edit online

To customize your EP11 enablement, you can set environment variables. Setting environment variables overrides any settings from the configuration file.

The following variables are available:

OCK_EP11_TOKEN_DIR

specifies a directory for all available EP11 token configuration files. If multiple configuration files are available, they must all be located below this directory.

The default directory for the EP11 token configuration files is /etc/opencryptoki/. This is the same directory where the openCryptoki configuration file opencryptoki.conf is stored.

Examples:


export OCK_EP11_TOKEN_DIR=/home/user/ep11token
export OCK_EP11_TOKEN_DIR=/var/lib/opencryptoki/

Notes:

Objects belonging to a certain EP11 token are stored in a different directory specified by the tokname attribute in opencryptoki.conf.
The setting of this environment variable is ignored, if a program trying to access the designated EP11 token is marked with file permission setuid.

OPENCRYPTOKI_TRACE_LEVEL

defines the granularity of logging support. Valid values are between 0 and 5. For information about log levels, read topic Enabling the logging support while running the EP11 token.

Example:

export OPENCRYPTOKI_TRACE_LEVEL=2