Logging In as Auditor
Before you can change the audit logging configuration, archive audit logs, or verify audit logs from another HSM, you must log in as Auditor (AU), or relevant commands will fail.
To log in as Auditor
1.Connect to the appliance via SSH or a serial connection, and log in to LunaSH as audit or a custom user with an audit role (see Logging In to LunaSH).
2.Log in to the HSM.
lunash:> audit login
You are prompted for the Auditor credential.
Failed Auditor Login Attempts
If you fail three (3) consecutive Auditor login attempts, the Auditor role is locked out for ten minutes.
NOTE The system must actually receive some erroneous/false information before it logs a failed attempt; if you merely forget to insert the PED key, or insert the wrong color key, that is not counted as a failed attempt. You must insert an incorrect PED key of the correct type, or enter an incorrect PIN or challenge secret, to fail a login attempt.