Slot and token management

Creating slots

To create slots on the HSM, select File > Create Slot, or select Create Slots on the toolbar. A dialog will prompt for the number of slots to be created.

Removing slots

Before removing slots from ProtectToolkit-C, ensure that the contained token and objects are not in use.

To remove a slot

Select File > Delete Slots. A list of available slots is displayed. Select the slot to delete from the list and select the Delete button.

Initializing a token

The initialization of a token is performed to set the user and token SO PIN. For more information about PINs, including details of what constitutes a valid PIN, refer to PINs and passwords.

To initialize a token

1. Select Edit > Tokens… from the menu to open the Manage Tokens dialog.

   

2. Select an uninitialized token from the slot drop-down box.

3. Select Initialize.

   The Initialise Token dialog will prompt for the token label, SO PIN, and User PIN.

   

   Note

   PINs have to be entered twice to confirm correct entry.

   If you intend to operate the ProtectServer 3 HSM with firmware 7.03.00 in FIPS Mode, set a PIN that is 8 to 32 characters-long.

   The User PIN will not be required until an application requires storage on that slot.

4. Select Done to exit the Manage Tokens dialog.

Setting the Token User PIN

To set the Token User PIN

1. Select Edit > Tokens...

2. Select an initialized token from the slot drop-down box, then select User PIN. If the selected token does not have a current User PIN, the dialog will prompt for the SO PIN in order to authorize the creation of the new User PIN. For more information about PINs, including details of what constitutes a valid PIN, refer to PINs and passwords.

   If the selected token already has a User PIN assigned, the dialog will prompt for the current and new User PIN to be entered.

   

   Note

   PINs have to be entered twice to confirm correct entry.

3. Select Done to exit the Manage Tokens dialog.

Setting the Token SO PIN

1. To set a token SO PIN, select Edit > Tokens….

2. Select an initialized token from the slot drop-down box, then select SO PIN. The dialog will prompt for the current and new SO PIN to be entered. For more information about PINs, including details of what constitutes a valid PIN, refer to PINs and passwords.

   

   Note

   PINs have to be entered twice to confirm correct entry.

3. Select Done to exit the Manage Tokens dialog.

Resetting a token

A token reset can only be done to initialized tokens. Admin tokens cannot be reset and any attempt to do so will display a warning.

To reset a token

1. Select an initialized token from the slot drop-down box, and then select Reset and enter the token SO PIN to open the Initialize Token dialog.

2. Enter a token label, SO PIN and User PIN. A token is considered initialized after entry of the SO PIN. The User PIN does not have to be set until an application requires storage on that slot. For more information about PINs, including details of what constitutes a valid PIN, refer to PINs and passwords.

   Note

   PINs have to be entered twice to confirm correct entry.

3. Select Done to exit the Manage Tokens dialog.