Services
Luna Cloud HSM Services
Luna Cloud HSM Service Integrations
CipherTrust Key Management Services
- Key Broker for Salesforce
  - Adding a Key Broker for Salesforce Service
  - Managing a Key Broker for Salesforce Service
  - Setting a Rotation Policy
  - Migrating Key Broker for Salesforce to CipherTrust Data Security Platform as a Service
- Key Broker for Google Cloud EKM
  - Service Guide
  - Key Setup Guide
  - Key Use Guide
  - Frequently Asked Questions
  - Migrating Key Broker for Google Cloud EKM to CipherTrust Data Security Platform as a Service
- CipherTrust Data Security Platform as a Service
payShield Cloud Services
- payShield Cloud HSM Service
  - Service Overview
  - Prerequisites
  - Getting Started
    - payShield Cloud HSM Configuration/Subscription Options
    - How to Subscribe to the payShield Cloud HSM Service
  - Service Specifications
  - Connecting to the payShield Cloud HSM Service
    - Azure Connection Guide
      - Create Express Route connection
      - Create a Virtual Network
      - Create a Virtual Network Gateway
    - GCP Connection Guide
    - AWS Connectiontion Guide
  - Service Provisioning from DPoD Platform
    - Trial Tier Provisioning
    - Production Tier Provisioning
    - View Sevice Status
  - HSM Management using payShield Manager
    - Preparing for HSM Commission
      - Install Smart Card Reader Driver
      - Check Your Proxy Configuration
      - Additional Steps for the First Time Users
      - Configure the Smart Card Reader
    - Steps to Commission payShield Manager
      - Create a new Security Domain
      - Load / Install the Security Domain
      - Create Left and Right Remote Access Control key cards
    - Adding Another HSM to the Security Domain
    - Transitioning between HSM States via payShield Manager
    - Viewing Network Interfaces in payShield Manager
  - HSM Deprovisioning
  - APPENDIX A - Glossary
  - APPENDIX B - DPoD Errors
- Point-to-Point Encryption
  - Adding a Point-to-Point Encryption Service
  - Using the service
  - P2PE CLI
    - p2pe key
      - p2pe key generate
      - p2pe key list
      - p2pe key delete
      - p2pe key export
    - p2pe service
      - p2pe service init
      - p2pe service changePwd
    - p2pe tls
      - p2pe tls init
      - p2pe tls requestcertificate
      - p2pe tls selfsigncertificate
  - P2PE REST API
  - P2PE errors
  - Service Details
  - Frequently Asked Questions
Partner Services

p2pe key

The p2pe key commands allow users to generate, export, list and delete service keys.

On Windows operating systems execute the command from an Administrator Command Prompt. Right-click the Command Prompt and select Run as Administrator.

Linux

p2pe key [command]

Windows

p2pe.exe key [command]

Command	Description
generate	Generate a key on the service HSM.
list	List all keys available on the service HSM.
delete	Delete a key from the service HSM.
export	Export a key from the service HSM.

Flag	Description
`--help`	Help for the command.

Global Flags	Description
`[--caCert]`	Path to PEM-encoded CA certificate chain for server authentication.
`[--clientCert]`	Path to client's PEM-encoded certificate. Required for client authentication. Provide the value in the command or add the value to a configuration file.
`[--clientPvtKey]`	Path to client's PEM-encoded private key. Required for client authentication. Provide the value in the command or add the value to a configuration file.
`[--config]`	Path to configuration file containing options for `--clientCert` and `--clientPvtKey` in YAML format. If you create the configuration file at `$HOME/.p2pe.yaml` you do not need to provide the `--config` value in P2PE CLI commands.
`--host`	Service endpoint URL. (Default `0.0.0.0`)
`--port`	Service port. (Default `8080`)

Note

If the CA-cert is available in the operating system trust store, you do not need to provide the path to the TLS trust store when using the P2PE CLI key commands.

p2pe key

On this page

Suggest A Change