cluster member authorize
Authorize the specified cluster member to create objects on the cluster's keyrings.
NOTE Thales recommends Luna Appliance Software 7.8.3 with cluster package 1.0.3, Luna HSM Firmware 7.8.2,
TIP Manual member authorization is required only:
>to authorize the first member of a cluster
>when recovering a cluster with a single member that has failed
>when manually reinstating the first member of a cluster where all members failed
In a cluster where at least one member remains active and connected, rejoining members automatically take their authorization from that member, and manual re-authorization is not needed.
User Privileges
Users with the following privileges can perform this command:
>Admin
Syntax
cluster member authorize -partition <name> [-copassword <password>] [-memberid <string>]
Argument(s) | Shortcut | Description |
---|---|---|
-copassword | -c | The partition Crypto Officer password. If this option is omitted on a password-authenticated HSM, LunaSH prompts for the password. If this option is included on a multifactor quorum-authenticated HSM and the partition is not activated, it is ignored. |
-memberid | -m | Specifies the member ID to be authorized. See cluster member list. |
-partition | -p | Specifies the application partition used to authorize the member. |
Example
lunash:>>cluster member authorize -memberid ecb8f151-8184-412d-840a-6cd15e8ffb36 -partition clusterpar -copassword IamtheCO Success Command Result : 0 (Success)