cmu

NOTE   This is a general-purpose tool intended for use across SafeNet HSM versions. It might reference mechanisms and features that are not available on all SafeNet products.

This section provides a detailed description of each function available in the Certificate Management Utility.

The command function is the first parameter on the command line that invokes the CMU application. It does not require a leading dash character. All options follow the command function and do employ leading dashes. Only a single command function can be specified with each invocation of the CMU application.

cmu <function> <-parameter_name[=parameter_value]>

Most functions take parameters, some of which may be mandatory, and some optional. Parameters may, in turn, take values. If a parameter takes a value, then the general syntax is to write the command cmu, followed by a space, followed by a function name, followed by a space, followed by a leading dash "-" and parameter name and an equal sign "=" and a value, with no spaces from the dash to the end of the parameter value. Multiple parameters are separated by spaces.

Authentication

Where an operation requires authentication, you must provide the appropriate password (for a Password Authenticated HSM) or the appropriate PED key (via Luna PED, for a Trusted Path HSM).

This chapter provides a detailed description of each of the functions available in the SafeNet Certificate Management Utility. It contains the following topics:

>cmu certify

>cmu delete

>cmu export

>cmu generatekeypair

>cmu getattribute

>cmu getpkc

>cmu import

>cmu importkey

>cmu list

>cmu requestcertificate

>cmu selfsigncertificate

>cmu setattribute

>cmu verifyhsm

>cmu verifypkc