token backup show
Displays the token label and firmware version for the specified backup token.
CAUTION! Wait at least 20 seconds before you run the token backup show command after performing a backup token backup firmware update. If you run the token backup showcommand within 10 seconds or less following a successful completion of token backup update firmware, the token backup show command will hang and the green LED on the token reader will continue to flash. The work-around for the hanging state is to remove and re-insert the backup token and then rerun the token backup show command.
WHEN to USE LunaSH "token backup" commands:
LunaSH token backup commands operate a SafeNet Luna Backup HSM attached directly to SafeNet Luna Network HSM via USB, and are not intended for use with remotely connected backup devices.
You might have a locally-connected backup HSM (connects directly to a SafeNet Luna Network HSM via USB cable) and a locally connected serial terminal and be walking them from SafeNet Luna Network HSM to SafeNet Luna Network HSM in your server room to perform backups. Or you might be administering remotely via SSH and lunash:> commands, while a technician in your server center carries the backup HSM from one SafeNet Luna Network HSM to the next. In either case, these token backup commands are the method to use. The important distinction is where the backup HSM is physically connected - from the SafeNet Luna Network HSM perspective, those are both local backup operations to a backup HSM that is locally connected to the appliance.
For true, hands-off, lights-out operation of your SafeNet appliances, use a SafeNet Luna Backup HSM located in your administrator's office (or other convenient location), connected to a computer acting as a Remote Backup server (this could be your administrative workstation, or it could be a completely separate computer). This means the computer and Backup HSM are located near you and remote/distant from your SafeNet Luna Network HSM appliance(s). For that application, use the backup commands in the lunacm utility supplied with the SafeNet Luna Network HSM Client software (which must be installed on the computer that is acting as Remote Backup server) - the appliance token backup commands are not designed to work for Remote Backup.
The HSM firmware needs approximately 2K bytes of memory to manage each partition and data objects in it. To avoid you having to calculate the exact memory space available for data storage -- with you deducting the memory used by internal data structures --the "partition list" command adjusts the memory size attributes for you. Thus, the total available memory reported by "partition list" will be different than that reported by "token backup show" and "token backup partition list."
User Privileges
Users with the following privileges can perform this command:
>Admin
>Operator
>Monitor
Syntax
token backup show -serial <serialnum>
| Argument(s) | Shortcut | Description |
|---|---|---|
| -serial <serialnum> | -s | The serial number of the backup HSM/token. |
Example
lunash:>token backup show -serial 496771 Token Details: ============ Token Label: sa78backup Serial #: 496771 Firmware: 6.27.0 HSM Model: G5Backup Authentication Method: Password Token Admin login status: Logged In Token Admin login attempts left: 3 before Token zeroization! Partition Information: ====================== Partitions licensed on token: 20 Partitions created on token: 2 ---------------------- Partition: 496771005, Name: sa78par1backup Partition: 496771010, Name: sa78par2backup Token Storage Information: ========================== Maximum Token Storage Space (Bytes): 16252928 Space In Use (Bytes): 32752 Free Space Left (Bytes): 16220176 License Information: ==================== 001111-012 G5 Backup Config - 001111-012 004444-012 Test BackupToken RemotePed - 004444-012 004444-006 Test BackupToken Partitions 20 Update - 4444-006 004444-009 Test BackupToken HSM Storage 15.5 Meg - 004444-009 004444-008 Test BackupToken External MTK Update 2 - 004444-008 Command Result : 0 (Success)
