Home > |
Configuration Guide > Configuring a Password-Authenticated HSM > Initializing a Password-Authenticated Luna G5 HSM
|
---|
Initialization assigns a meaningful label and a Security Officer password, and places the HSM in a state ready to use.
Use the instructions on this page if you have a Luna G5 with Password authentication.
Some HSM Policy changes are destructive. A destructive policy change is one that requires the HSM to be initialized again, before it can be used. Thus if you intend to perform a destructive HSM Policy change, you might need to perform this initialization step again, after the Policy change.
To perform HSM operations, you must login as the Security Officer (SO). For a new Luna G5 module, the HSM Security Officer password is “default”. Type:
lunacm:> hsm login -password default
Command Result : No Error
lunacm:>
The Luna G5 arrives in a default, ready-to-initialize state. Before you can make use of it, the HSM must be initialized (assigned a name/label and an SO password). This establishes your ownership for current and future HSM administration.
lunacm:> hsm init -label mylunaG5 -password Fu22y!00
You are about to initialize the HSM.
The User will be deleted and all data will be erased.
Are you sure you wish to continue?
Type 'proceed' to continue, or 'quit' to quit now -> proceed
Command Result : No Error
If you were to exit and restart the lunacm utility, you would see the new label that you have just applied to the HSM. The password would not, of course, be displayed.
The next step is to "Creating a Partition on Luna G5" on the HSM.