Creating or Deleting an Application Partition

The HSM Security Officer (SO) is responsible for creating the application partition. The HSM SO can delete the partition at any time, destroying all partition roles and stored cryptographic objects.

Prerequisites

>The HSM must be initialized (see HSM Initialization).

>You require the HSM SO credential (blue PED key).

To create an application partition

1.Log in as HSM SO (see Logging In as HSM Security Officer).

2.Create the application partition.

lunacm:> partition create

3.[Optional] Confirm that the partition was created.

lunacm:> slot list

NOTE   If you have FMs loaded, you must restart the HSM whenever you perform any of the following operations:

>create a new partition (even if it has the same slot number as a recently-deleted partition),

>make a destructive change like re-initializing or zeroizing the HSM, or changing a destructive policy.

You will be unable to use the loaded FMs with new partitions until you restart the HSM. Use lunacm:> hsm restart or the lunareset utility.

To delete an application partition

1.Log in as HSM SO (see Logging In as HSM Security Officer).

2.Delete the application partition by specifying the slot number.

lunacm:> partition delete -slot <slot>


Customer Support Portal

SafeNet Luna PCIe HSM 7.4 Product Documentation  13 December 2019  Copyright 2001-2019 Thales. All rights reserved.