token pki resetpin

Home >	LunaSH Command Reference Guide > LunaSH Commands > token > token pki resetpin

token pki resetpin

Reset the challenge secret or password for the indicated PKI device.

An external SafeNet HSM can be USB-connected to a SafeNet Network HSM appliance for:

•local backup/restore operations (SafeNet Backup HSM)

•PKI bundle operations (SafeNet USB HSM)

SafeNet Network HSM does not pass PED operations and data through to an externally connected SafeNet HSM from a SafeNet PED that is connected locally to the SafeNet Network HSM.

If the external HSM is PED-authenticated, then the options for SafeNet PED connection are:

•local PED connection, directly to the affected HSM, when needed, or

•Remote PED connection, passed through the SafeNet Network HSM

Note: Support for PKI Bundles with Remote PED begins at firmware version 6.10.1 in the external HSM.

Note: Support for locally connected Backup HSM with Remote PED,
begins at firmware version 6.10.1 in the external HSM.

Note: Use of Remote PED with an external device is made possible when you set up with the commands
hsm ped vector init -serial <serial#_of_external_HSM>
and
hsm ped connect -serial <serial#_of_external_HSM>
before using token pki or token backup commands.

Syntax

token pki resetPin -serial <token_serial_number> [-force]

Parameter	Shortcut	Description
-force	-f	Force the action without prompting.
-serial	-s	Specifies the serial number of the inserted token, whose password or challenge is to be reset. Use the token pki list command to get the token serial number.

Example

lunash:> token pki resetPin -serial 475289 


Please type "proceed" to continue, anything else to abort: proceed 
Luna PED operation required to login as HSM Administrator - use Security Officer (blue) PED key. 

Please ensure that you copy the password from the Luna PED 
and that you keep it in a safe place. 


Command Result : 0 (Success)