token backup partition show
Display a list of objects on the backup token/HSM.
WHEN to USE LunaSH "token backup" commands:
LunaSH token backup commands operate a SafeNet Luna Backup HSM attached directly to SafeNet Luna Network HSM via USB, and are not intended for use with remotely connected backup devices.
You might have a locally-connected backup HSM (connects directly to a SafeNet Luna Network HSM via USB cable) and a locally connected serial terminal and be walking them from SafeNet Luna Network HSM to SafeNet Luna Network HSM in your server room to perform backups. Or you might be administering remotely via SSH and lunash:> commands, while a technician in your server center carries the backup HSM from one SafeNet Luna Network HSM to the next. In either case, these token backup commands are the method to use. The important distinction is where the backup HSM is physically connected - from the SafeNet Luna Network HSM perspective, those are both local backup operations to a backup HSM that is locally connected to the appliance.
For true, hands-off, lights-out operation of your SafeNet appliances, use a SafeNet Luna Backup HSM located in your administrator's office (or other convenient location), connected to a computer acting as a Remote Backup server (this could be your administrative workstation, or it could be a completely separate computer). This means the computer and Backup HSM are located near you and remote/distant from your SafeNet Luna Network HSM appliance(s). For that application, use the backup commands in the lunacm utility supplied with the SafeNet Luna Network HSM Client software (which must be installed on the computer that is acting as Remote Backup server) - the appliance token backup commands are not designed to work for Remote Backup.
User Privileges
Users with the following privileges can perform this command:
>Admin
>Operator
>Monitor
Syntax
token backup partition show -partition [<partitionName>] -serial <serialnum> -password <backup_token/hsm_userPassword>
| Argument(s) | Shortcut | Description |
|---|---|---|
| -password <tokenpartitionpassword> | -pas | Specifies the password of the partition for which to display information. If you do not specify a password, you are prompted to enter it when you execute the command. |
| -partition <tokenpartitionname> | -par | Specifies the name of the partition for which to display information. By default information about all partitions is shown. Obtain the partition name by using the partition list command. |
| -serial <tokenserialnumber> | -s | The serial number of the partition for which to display information. By default information about all partitions is shown. Obtain the partition name by using the partition list command. |
Example
lunash:>token backup partition show -partition sa78par1backup -serial 496771 Please enter the user password for the token: > ******** Partition Name: sa78par1backup Partition SN: 496771005 Partition Label: sa78par1backup Storage (Bytes): Total=9480, Used=9348, Free=132 Number objects: 6 Object Label: MT RSA 4096-bit Public KeyGen Object Type: Public Key Object Handle: 14 Object Label: MT RSA 4096-bit Private KeyGen Object Type: Private Key Object Handle: 15 Object Label: MT RSA 4096-bit Public KeyGen Object Type: Public Key Object Handle: 19 Object Label: MT RSA 4096-bit Private KeyGen Object Type: Private Key Object Handle: 20 Object Label: MT RSA 4096-bit Public KeyGen Object Type: Public Key Object Handle: 24 Object Label: MT RSA 4096-bit Private KeyGen Object Type: Private Key Object Handle: 25 Command Result : 0 (Success)
