This section covers activities that you might perform for maintenance of your Luna SA, or to implement optional features and functions.
This section assumes that you have already installed the hardware and software and performed the Configuration procedures as described in the Configuration Guide (see the Table of Contents).
The topics and activities in this Administration guide might be optional (depending upon the version of HSM appliance that you have purchased, or upgrades that you have since installed), or they might be occasional maintenance tasks that you can look up when you need them.
We suggest that you take a look at all topics, to have an idea of what is available.
The guide is roughly divided between tasks that affect the appliance, not including the HSM itself, and tasks that pertain to management of the HSM inside the appliance. Some items might overlap both categories - where necessary, cross-references point to other related tasks and descriptions.
"Administer the Appliance (outside the HSM)"
"Administer the HSM within the appliance"
Administer the Appliance (outside the HSM)
Backup & Restore Service Configuration
Backup and Restore Your Appliance Service Configuration
About Changing Appliance Passwords
Connections to the Appliance - Limits
Failed Logins & Forgotten Passwords
Recover or reset admin account password
Fan and Power Supply Maintenance
Configure HA - Setup Appliances & Register Clients
Recovering or re-setting admin account
Named Administrative Users and Their Assigned Roles
Messages from system during ssh session
Resetting to Factory Condition
Network Trust Link Service (NTLS)
Impact of service restart ntls
NTLS Keys in Hardware or in Software
Correcting Time Drift without NTP
Public-Key Authentication for Administrator (optional)
Using Public-Key Authentication
Security of Your Luna SA System
Security and Handling Issues - HSM Appliance
Setting and Clearing SSH Device Restrictions
SNMP Operation and Limitations
The SafeNet CHRYSALIS-UTSB MIB
Advanced Configuration Upgrades
Administer the HSM within the appliance
Configuring and Using Audit Logging
Audit Logging General Advice & Recommendations
Audit Logging - Remote file system
Authenticating - PED and Password
Password Authentication (option)
PED Authentication (trusted path) (option)
Remote HSM Admin Using Remote PED
Backup & Restore HSM and Partition Contents
Backup HSM-Battery Installation
Luna Backup or Luna G5 HSM Battery Questions
What is this Error about "token not in factory reset state"?
Changing HSM and Partition Passwords
Access a Partition from a Client
External HSMs - Using Luna G5 or Token-format HSM with Luna SA Appliance
Card Reader (Luna DOCK 2) and Token-style HSMs
Consolidate Multiple Luna CA4 Tokens
HSM NOT in FIPS140-2 approved mode
HSM Initialization and Zeroization
Lost PED Keys or PED PINs, or passwords
LunaCM utility - notes about using
Migrating from other Luna HSMs
Partitions (logical HSM spaces for clients)
Activating and AutoActivating Partitions
Security of Your Partition Challenge
Public Key Infrastructure and Removable HSMs
Using an external HSM with Luna SA Appliance
Card Reader (Luna DOCK 2) and Token-style HSMs
Secure Transport Mode and Purple PED Key
Purple Keys, Tamper, and Secure Transport
Secure Transport Mode [Remote]