You are here: Configuration Manual (Set up Luna Appliance after Installing) > Configure Luna appliance network settings

Preparing to configure appliance network settings

This section describes basic configuration of the HSM appliance as a networked appliance, basic setup tasks that must be accomplished before you can configure the HSM or make Client connections. You will:

Gather Information (next topic, this page)
Switch On (next page)
Open a Connection

In general, we recommend against using DHCP for HSM appliances. DHCP has its own set of inherent security risks (spoofing attacks, etc), and a Luna SA (or any critical server) either should not be used in that manner, or must be managed with the greatest of care. It would be comparable to having a firewall with a DHCP address. Consider what might happen if a Luna SA appliance rebooted and came back with a different address. It would cause considerable disruption to client applications.

It is possible to assign "static" IP by instructing a router to always assign specific reserved IP addresses to specific appliance MAC addresses, but it is also possible that a reset router could "forget" those assignments. The safer approach is a manually set static IP at the appliance, that remains effective as long as the appliance is healthy.

As shipped from the factory, we leave the HSM appliance configured for DHCP. This setting is a side-effect of our manufacturing and final-test process where we need the ability to configure multiple HSM appliances at one time on a DHCP-based network and not have to be constrained by fixed IP addresses.

Gather Information

Before you begin, obtain the following information (see your network administrator for most of these items):

New appliance admin Password

HSM Appliance Network Parameters

the IP address assigned to this device (if you are using static IP, which is recommended)
Hostname for the HSM appliance (registered with network DNS)
domain name
default gateway IP address
DNS Name Server IP address(es)
Search Domain name(s)
device subnet mask
ethernet device (use eth0, which is the uppermost network jack on the HSM appliance back panel, closest to the power supply, and is labeled 1)

DNS Entries

Ensure that you have configured your DNS Server(s) with the correct entries for the appliance and the client.

If you are using DHCP, then all references to the Client and the HSM appliance (as in Certificates) should use hostnames.

Use the worksheet to record those values.

Client Requirements

If you are using a client workstation with Linux or UNIX, then SSH (secure shell) and the scp utility, should be installed and ready to use (normally they are provided with the operating system).
If you are using a Windows-based workstation, then the freeware PuTTY utility suite is supplied on our HSM Client Software CD, and is installed in c:\Program Files\SafeNet\LunaClient\putty.exe.
The pscp utility is also supplied on the HSM Client Software CD, and is required for this installation.

Go to "Power up the HSM appliance"

Recommended Network Characteristics

Power-up the Luna appliance

Open a Connection

First Login & Changing Passwords

Set System Date and Time

Configure IP and Network Parameters

Make Your Network Connection

Generate New Luna SA Server Cert

Show the Table of Contents