cluster client unassign
Unassign a list of keyrings from a specified client. This client will no longer be able to access the keyring in LunaCM or crypto applications. Ensure that none of this client's applications are running operations on the keyring(s) you unassign. Client requests will be interrupted.
NOTE This command requires minimum Luna Appliance Software 7.9.0 with the lnh_cluster-1.0.5 package installed.
Thales requires minimum Luna Appliance Software 7.8.5 with the lnh_cluster-1.0.4 package, Luna HSM Firmware 7.8.4, and Luna HSM Client 10.7.2 to use clusters in production environments, or minimum Luna Appliance Software 7.9.0 with the lnh_cluster-1.0.5 package, Luna HSM Firmware 7.8.4, and Luna HSM Client 10.8.0 to migrate keys from Luna application partitions.
REST API: PATCH /api/cluster/client/{clientID}
User Privileges
Users with the following privileges can perform this command:
>Admin
Syntax
cluster client unassign -clientid <UUID> -keyringlist <string>
| Argument(s) | Shortcut | Description |
|---|---|---|
| -clientid | -c | Specifies the UUID of the client. |
| -keyringlist | -k |
Specifies a colon-separated list of up to 6 keyring UUIDs to be unassigned from this client. NOTE To assign or unassign more than 6 keyrings at a time, use the cluster REST API (see PATCH /api/cluster/client/{clientID}). |
Example
lunash:>cluster client unassign -clientid 53a323fe-9528-4d24-87bf-69a614ab9bae -keyringlist 27aac110-f185-4f58-a5e4-929a68fda572:44f8d5f5-db53-4e0c-892b-3167f0648960:56271eb0-8a0d-4d7c-b739-02cd65ff6c42 Success Command Result : 0 (Success)
