Creating Luna HSM client key-certificate pairs

Create a private key and a certificate for the DataPower® Gateway to establish a connection to the SafeNet Luna Network HSM.

1. In the search field, enter crypto.
2. From the search results, click Crypto tools.
3. Click the Create SafeNet Luna client certificate tab.
4. Required: In the Common name (CN) field, specify the common name. The common name must be the DataPower IP address or hostname. The HSM registers the DataPower Gateway by the common name. The connection breaks when the provided common name is incorrect.
5. Required: In the Country name (C) field, specify the two-character country code. Enter a text string up to 64 characters in length.
6. Required: In the State (ST) field, specify the name of the state or province. Enter a text string up to 64 characters in length.
7. Required: In the Locality (L) field, specify the name of the city or town. Enter a text string up to 64 characters in length.
8. Required: In the Organization (O) field, specify the organization name. Enter a text string up to 64 characters in length.
9. Optional: In the Organizational unit (OU) field, specify the organizational unit name. Enter a text string up to 64 characters in length.
10. Optional: In the Email address field, specify the email address.
11. Optional: In the Private key file name field, specify the file name for the generated private key. When not specified, the private key file takes the common_nameKey.pem format.
12. Optional: In the Public key file name field, specify the file name for the generated certificate. When not specified, the certificate file takes the common_name.pem format.
13. Optional: Use the Export private key property to specify whether to export the private key to the temporary: directory. By default, the private key is not exported to the temporary: directory.
14. Click Submit.