keyring create
Create up to 100 keyrings at a time on the specified cluster. In this release, you can create up to 3000 keyrings on the cluster in total.
NOTE Thales requires minimum Luna Appliance Software 7.8.5 with the lnh_cluster-1.0.4 package, Luna HSM Firmware 7.8.4, and Luna HSM Client 10.7.2 to use clusters in production environments, or minimum Luna Appliance Software 7.9.0 with the lnh_cluster-1.0.5 package, Luna HSM Firmware 7.8.4, and Luna HSM Client 10.8.0 to migrate keys from Luna application partitions.
REST API: POST /api/keyrings
User Privileges
Users with the following privileges can perform this command:
>Admin
Syntax
keyring create -label <label> -password <password> -partition <label> [-total <number>] [-index <number>] [-copassword <password>]
| Argument(s) | Shortcut | Description |
|---|---|---|
| -copassword | -c | Specifies the Crypto Officer password for the cluster partition. If this option is omitted on a password-authenticated HSM, LunaSH prompts for the password. If this option is included on a multifactor quorum-authenticated HSM and the partition is not activated, it is ignored. |
| -index | -i |
Starting index number to be appended to the label when creating multiple keyrings at a time. Valid values: 1-10000 |
| -label | -l | Set a label for the new keyring. |
| -partition | -par | Specifies the label of the cluster partition. Use lunash:> cluster member partition list to display the partitions available on the HSM. The cluster partition is displayed with a C flag. |
| -password | -pas | Set a password for the Partition Security Officer (PO) role on the new keyring(s). |
| -total | -t |
Specifies the number of keyrings to be created. Valid values: 1-100 |
Example
lunash:>keyring create -label keyring01 -password iamtheCO -partition clusterpar -copassword password KeyRing was created Command Result : 0 (Success)
