role setdomain
Sets the domain of a role. Used only by the HSM's Auditor user. The Auditor role must have been initialized previously, and must be logged in, in order to set the domain. On password-authenticated HSMs, this step is required before setting logging parameters or the log filepath, or importing/exporting audit logs.
Syntax
role setdomain [-domain <domain> | -defaultdomain] [-force]
Option | Shortcut | Description |
---|---|---|
-domain <domain> | -d |
Set the role Cloning Domain string for password-authenticated HSM only; ignored for PED-authenticated HSM) Note: -domain and -defaultdomain are mutually exclusive parameters - attempting to use both causes the command to fail with an error message. |
-defaultdomain | -def |
Set the default domain on a password-authenticated HSM; ignored for PED-authenticated HSM. (Deprecated - not recommended unless needed to clone with older HSMs that had default domain set.) Note: -domain and -defaultdomain are mutually exclusive parameters - attempting to use both causes the command to fail with an error message. |
-force | -f | Force the action (useful for scripting) |
Example
lunacm:> role login -name au Please attend to the PED. Command Result : No Error
lunacm:> role setdomain You are about to set a new domain for the role. Are you sure you wish to continue? Type 'proceed' to continue, or 'quit' to quit now -> proceed Please attend to the PED. Command Result : No Error