Creating or Deleting an Application Partition

The HSM Security Officer (SO) is responsible for creating the application partition and assigning it to a registered client. The HSM SO can delete the partition at any time, destroying all partition roles and stored cryptographic objects.

Prerequisites

>The HSM must be initialized (see Initializing the HSM).

>You require the HSM SO credential (blue PED key).

To create an application partition

1.Connect to the appliance via SSH or a serial connection, and log in to LunaSH as admin or operator, or a custom user with an admin or operator role (see Logging In to LunaSH).

2.Log in as HSM SO (see Logging In as HSM Security Officer).

lunash:> hsm login

3.Create the application partition, specifying a partition name. This name is distinct from the partition label assigned during initialization and can be changed later. You can also specify the desired partition size in bytes (see also Customizing Partition Sizes).

Partition names created in LunaSH must be 1-32 characters in length. The following characters are allowed:
abcdefghijklmnopqurstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ 0123456789!@#$%^*()-_=+{}[]:,./?~
Spaces are allowed; enclose the partition name in double quotes if it includes spaces.
The following characters are not allowed: &\|;<>`'"?
No two partitions can have the same name.

lunash:> partition create -partition <name> [-size <size> | -allfreestorage]

4.[Optional] Confirm that the partition was created.

lunash:> partition list

To delete an application partition

1.Connect to the appliance via SSH or a serial connection, and log in to LunaSH as admin or operator, or a custom user with an admin or operator role (see Logging In to LunaSH).

2.Log in as HSM SO (see Logging In as HSM Security Officer).

lunash:> hsm login

3.Delete the application partition by specifying its name.

lunash:> partition delete -partition <name>