Home > |
---|
Change the password for a specified role.
role changepw -name <role> [-oldpw <oldpassword>] [-newpw <newpassword>] [-prompt] [-force]
Option | Shortcut | Description |
---|---|---|
-name <role> | -n | Role to change password for |
-oldpw <oldpassword> | -old | Current password If you include option -oldpw the HSM assumes that you wish to change the challenge secret, which is the "secondary credential". This applies to Crypto Officer and Crypto User, which each have primary and secondary credentials, but not to Partition SO, which has only primary credential. Required if you wish to change the secondary credential. |
-newpw <newpassword> | -new | New password Required if you have already provided an -oldpw. |
-prompt | -p | Prompt for challenges (challenges will be hidden by *) |
-force | -f | Force the action. Use this option to bypass the warning about primary/secondary credentials on a PED-authenticated HSM, as shown in the example. |
lunacm:> role login -name SO Please attend to the PED. Command Result : No Error
lunacm:> role changepw -name SO -prompt Warning: this role has no secondary credentials. -prompt parameter will be ignored. Type 'proceed' to continue, or 'quit' to quit now -> proceed Please attend to the PED. Command Result : No Error
lunacm:> role changepw -name co This role has secondary credentials. You are about to change the primary credentials. Are you sure you wish to continue? Type 'proceed' to continue, or 'quit' to quit now -> proceed Command Result : No Error
lunacm:> role changepw -name co -oldpw PASSWORD -newpw userpin This role has secondary credentials. You are about to change the secondary credentials. Are you sure you wish to continue? Type 'proceed' to continue, or 'quit' to quit now -> proceed Command Result : No Error