|
Home > |
|---|
Initialize a Remote PED vector. This command creates a new Remote PED key by doing the following:
• Initializing a Remote PED vector (RPV)
• Imprinting the RPV onto the current HSM as well as onto an orange PED key (RPK).
–The RPK is kept with the Remote PED, when you set up a Remote PED workstation. The RPK allows a SafeNet Luna Network HSM with that RPV to connect to a Remote PED workstation where the attached PED provides the matching RPV, via the orange RPK.
–The RPV is a secret that facilitates the secure connection between a particular HSM that has that secret, and a Remote PED Server computer that has the RPK containing the identical secret. The HSM must be connected to a computer that runs Remote PED client, to manage the HSM's end of the Remote PED connection. More than one HSM can be imprinted with the same RPV, but a single Remote PED Server can connect with only one such remotely located HSM (via its client) at one time.
Note: You must be logged into the HSM as SO/HSM Admin (with the blue SO PED key), before you can run this command.
Note: To set up or erase a PED vector, or to make or break the Remote PED connection, on an HSM that is externally connected to the SafeNet Luna Network HSM, use the "-serial" option to specify the target HSM. If "-serial" is not specified, then the command acts on the SafeNet Luna Network HSM's internal HSM card.
Users with the following privileges can perform this command:
•Admin
hsm ped vector init [-serial <serialnum>] [-force]
| Option | Shortcut | Description |
|---|---|---|
| -force | -f | Force the action without prompting. |
| -serial <serialnum> | -s | Specifies the serial number of the remote PED for which you want to erase the remote PED vector. |
lunash:>hsm ped vector init
If you are sure that you wish to initialize remote PED vector (RPV), then enter 'proceed', otherwise type 'quit'.
> proceed
Proceeding...
Luna PED operation required to initialize remote PED key vector - use orange PED key(s).
Command Result : 0 (Success)