Send the client certificate (that you created on the previous page) to the HSM appliance, as follows.
The command is:
bash-2.05# scp /usr/safenet/lunaclient/cert/client/<clientCert>.pem admin@<serverhostname-or-IP>:
You are prompted for the HSM appliance admin password.
Example
bash-2.05# cd ../cert/client
bash-2.05# ls
myClient1Key.pem myClient1.pem
bash-2.05# scp myClient1.pem admin@myLuna3:
You must scp to the admin account on the HSM appliance, or the client
certificate will not register correctly.
For networks without DNS, use the HSM appliance's IP address, instead
of the hostname.
Example
bash-2.05# cd ../cert/client
bash-2.05# ls
<client-ip-address>Key.pem <client-ip-address>.pem
bash-2.05# scp <client-ip-address>.pem admin@<appliance-ip-address>:
Note the “:” after the destination. This is required. Without the colon,
scp does not recognize the supplied destination as a remote server.
The file arriving at the HSM is automatically placed in the
appropriate directory. Do not specify a directory for destination.
Next, "Register the Client Certificate to an HSM Server".