Home > |
---|
Change the Security Officer policies. Use this command to change the specified SO Policy from the current value to the new, specified value, if the corresponding SO Capability setting permits the change.
Note: The lunacm hsm commands appear only when the current slot selected in lunacm is for a locally-installed HSM, such as a SafeNet PCIe HSM or SafeNet USB HSM. When lunacm is directed at a slot corresponding to a remote SafeNet Network HSM, the HSM-level commands do not appear, since lunacm has a client-only connection to a remote HSM and therefore cannot log in as SO to a remote HSM. To access HSM commands on the SafeNet Network HSM appliance, you must use the Luna Shell (lunash).
You can use command hsm showpolicies before and after command hsm changesopolicy to verify that the change has occurred.
If you attempt to change a destructive policy, you are warned first, and asked to confirm before proceeding, so that you can never inadvertently destroy the contents of your HSM.
hsm changesopolicy - policy <policy_number> -value <new_policy_value>
Parameter | Shortcut | Description |
---|---|---|
-policy | -p | The number identifying the SO policy that you want to change. Use the hsm show command to find the number of the policy you want to change. |
-value | -v | The new setting to be applied to the indicated SO policy. Use the hsm show command to find the current setting of the policy you want to change. |
-force | -f | Force the change without further prompting. |
lunacm:> hsm changeSOPolicy -policy 25 -value 246
Command Result : No Error