About the Appliance Administration Guide
The maintenance and administrative tasks in this document are primarily for the SafeNet Luna Network HSM appliance, outside of the HSM. HSM administrative tasks are described in the SafeNet Luna HSM Administration Guide. Some activities might encompass both portions of the SafeNet Luna HSM server.
As an HSM Server, SafeNet Luna Network HSM provides increased operational flexibility over traditional HSMs. The SafeNet Luna Network HSM appliance includes an integrated FIPS 140-2 level 3 HSM, the SafeNet K7 Cryptographic Engine, which offers the same high level of security as traditional HSMs.
The HSM appliance that you have purchased has been factory configured to authenticate as either:
>Password Authentication version (equivalent to FIPS 140-2 level 2, using passwords, only, for authentication and access control.
>PED (Trusted Path) Authentication version that requires the PED and PED Keys for authentication and access control.
The HSM appliance adds a secure service layer (NTLS and STC) that allows the SafeNet Cryptographic Engine (the HSM inside the appliance) to be shared as a service to network applications. Like traditional servers that provide e-mail, web pages, and file download (FTP) services to authenticated clients, the HSM appliance offers HSM services to clients on the network.
As an Ethernet-attached device, the HSM appliance can be shared among many applications on a network. Rather than requiring many HSMs to fulfill the security demands of many applications, one HSM appliance can be shared among many applications simultaneously.
This document contains the following chapters:
>Timestamping – NTP and Clock Drift
>"Backing Up the Appliance Configuration" on page 1
The preface includes the following information about this document:
For information regarding the document status and revision history, see Document Information.