Initializing the Remote PED Vector (RPV) and Creating the Orange PED Key
The Remote PED (via PEDserver) authenticates itself to the SafeNet Luna Network HSM with a randomly-generated encrypted value stored on an orange PED key. The SafeNet Luna Network HSM administrator can use these directions to create this key. If the HSM is already initialized, the HSM SO must log in to complete this procedure. You require:
>SafeNet Luna PED with firmware 2.7.1 or newer
>USB mini-B to USB-A connector cable
>Luna PED DC power supply (if included with your Luna PED)
>Blank or reusable orange PED key (or multiple keys, if you plan to make extra copies or use an M of N security scheme). See Creating PED Keys for more information.
NOTE Generally, the HSM SO creates an orange PED key (and backups), makes a copy for each valid Remote PED server, and distributes them to the Remote PED administrators.
To initialize the RPV and create the orange PED key:
1.If you have not already done so, set up a Local PED connection (see Local PED Setup).
2.Using a serial or SSH connection, log in to the SafeNet Luna Network HSM appliance as admin.
3.If the HSM is initialized, login as HSM SO. If not, skip to the next step.
lunash:>hsm login
4.Ensure that you have the orange PED key(s) ready. Initialize the RPV.
lunash:>hsm ped vector init
lunash:>hsm ped vector init
If you are sure that you wish to initialize remote PED vector (RPV), then enter 'proceed', otherwise type 'quit'.
> proceed
Proceeding...
Luna PED operation required to initialize remote PED key vector - use orange PED key(s).
5.Attend to the Luna PED and respond to the on-screen prompts. See Creating PED Keys for a full description of the key-creation process.
•If you have an orange PED key with an existing RPV that you wish to use for this HSM, press Yes.
•If you are creating a new RPV, press No.
Continue following the prompts for PED PIN, M of N, and duplication options.
To continue setting up a Remote PED server, see Installing PEDserver and Setting Up the Remote Luna PED.
