The PKI feature with Luna SA is summarized as follows:
If you are an end-user of SafeNet HSM products, then it is assumed that you are using your SafeNet HSM in conjunction with a third-party application that is HSM-aware. Simply follow the instructions and procedures associated with that application, once you have installed the SafeNet HSM and configured it (described elsewhere in this Help and in the QuickStart Guide).
If you are a developer or integrator of applications, then refer to the Software Development Kit portion of this Help, along with the "Extensions to PKCS # 11" (SafeNet's augmentation of the PKCS # 11 standard API), and in particular to the token pki commands in the Reference section of this Help.
Special commands are provided under the token pki menu to perform HSM management operations on the removable HSMs (Luna tokens or Luna G5 HSMs). Briefly, to make use of Luna tokens and Luna G5 HSMs with Luna SA, you need to use:
The "token pki undeploy Command" is used to make the inserted, deployed token unavailable, such as when preparing to remove it. The remaining commands, under token pki are for general management of the tokens, and are similar to equivalent HSM and Partition commands.
All are described in the Reference section of this Help.
The Luna SA's HA (high availability) feature, when implemented for PCM tokens or Luna G5 HSMs must be used only across multiple Luna SA appliances. NEVER allow multiple Luna PCM tokens or Luna G5 HSMs to be placed in an HA configuration on a single Luna SA appliance. This is similar to the requirement to not include two partitions of the same HSM in a single HA group.