Home >

Lunacm Command Reference Guide > LunaCM Commands > role > role setdomain

role setdomain

Sets the domain of a role. Used only by the HSM's Auditor user. The Auditor role must have been initialized previously, and must be logged in, in order to set the domain.

Syntax

role setdomain [-domain <string> | -defaultdomain] [-force]

Parameter   Shortcut   Description  
-domain   -d   Set the role Cloning Domain string for password-authenticated HSM only; ignored for PED-authenticated HSM)
NOTE: -domain and -defaultdomain are mutually exclusive parameters - attempting to use both causes the command to fail with an error message.  
-defaultdomain   -def   Set the defaultdomain on a password-authenticated HSM; ignored for PED-authenticated HSM. (Deprecated - not recommended unless needed to clone with older HSMs that had defaultdomain set.)  
NOTE: -domain and -defaultdomain are mutually exclusive parameters - attempting to use both causes the command to fail with an error message.  
-force   -f   Force the action (useful for scripting)  

Example 1 - setDomain on PED-auth HSM

lunacm:> role login -name Auditor

        Please attend to the PED.

Command Result : No Error

lunacm:> role setDomain

        You are about to set a new domain for the role.
        Are you sure you wish to continue?

        Type 'proceed' to continue, or 'quit' to quit now -> proceed

        Please attend to the PED.

Command Result : No Error

lunacm:>

 

Example 2 - setDomain choosing Defaultdomain on PW-auth HSM (not recommended)


lunacm:> role setDomain -defaultdomain

Warning: You have selected to use the default domain.
 This is not recommended for new implementations and is
 only available for backwards compatibility.
 This capability is deprecated and will be discontinued in a future release.

 You are about to set a new domain for the role.
 Are you sure you wish to continue?

        Type 'proceed' to continue, or 'quit' to quit now -> proceed

        Please attend to the PED.

Command Result : No Error

lunacm:>