Registering a DataPower Gateway as a Luna HSM client

How to register a DataPower® Gateway as an authorized client to the Luna HSM.

Before you begin

Create or import the client certificate for the DataPower Gateway to register and copy the certificate to the HSM.

On the HSM, use the partition create command to create the partition to assign to the DataPower Gateway.
  1. Run the Luna HSM partition create -partition name, where name identifies the partition on the HSM.
  2. Provide the password for the new partition when prompted. Remember the password, for the DataPower Gateway needs this password to access the partition.

You must have proper user privilege to run the Luna HSM client register and client assignPartition commands on the HSM.

For more information, see the SafeNet Luna Network HSM documentation.

About this task

Use the Luna HSM client register command to register the DataPower Gateway.

Use the Luna HSM client assignPartition command to assign the partition to use for secure storage.

Procedure

  1. Log in to the Luna HSM as Admin.
  2. Register the DataPower Gateway.
    • To register by hostname, enter the following command.
      client register -client name -hostname hostname
    • To register by IP address, enter the following command.
      client register -client name -ip IPaddress
    name
    Specifies the name to identify the DataPower Gateway on the HSM.
    hostname
    Specifies the hostname of the DataPower Gateway to register.
    IPaddress
    Specifies the IP address of the DataPower Gateway to register.
    The command registers the client whose certificate file name matches the hostname or IPaddress.
  3. Assign the partition to the DataPower Gateway with the following command.
    client assignPartition -client name -partition partition
    name
    Specifies the client name for the DataPower Gateway that you are assigning the partition to.
    partition
    Specifies the partition name.