没有合适的资源?快使用搜索试试~ 我知道了~
SafeNet 网络 HSM 设备管理指南
1.该资源内容由用户上传,如若侵权请联系客服进行举报
2.虚拟产品一经售出概不退款(资源遇到问题,请及时私信上传者)
2.虚拟产品一经售出概不退款(资源遇到问题,请及时私信上传者)
版权申诉
0 下载量 62 浏览量
2024-05-04
11:32:47
上传
评论
收藏 2.05MB PDF 举报
温馨提示
![preview](https://dl-preview.csdnimg.cn/89261125/0001-a9f709f6573919ddabda87b80dc6e728_thumbnail.jpeg)
![preview-icon](https://csdnimg.cn/release/downloadcmsfe/public/img/scale.ab9e0183.png)
试读
83页
SafeNet 网络 HSM 设备管理指南
资源推荐
资源详情
资源评论
![doc](https://img-home.csdnimg.cn/images/20210720083327.png)
![rar](https://img-home.csdnimg.cn/images/20210720083606.png)
![doc](https://img-home.csdnimg.cn/images/20210720083327.png)
![pdf](https://img-home.csdnimg.cn/images/20210720083512.png)
![zip](https://img-home.csdnimg.cn/images/20210720083736.png)
![zip](https://img-home.csdnimg.cn/images/20210720083736.png)
![pdf](https://img-home.csdnimg.cn/images/20210720083512.png)
![pdf](https://img-home.csdnimg.cn/images/20210720083512.png)
![doc](https://img-home.csdnimg.cn/images/20210720083327.png)
![](https://csdnimg.cn/release/download_crawler_static/89261125/bg1.jpg)
SafeNet Network HSM
Appliance Administration Guide
![](https://csdnimg.cn/release/download_crawler_static/89261125/bg2.jpg)
Document Information
Product Version 6.2
Document Part Number 007-011136-007
Release Date 18 December 2015
Revision History
Revision Date Reason
A 18 December 2015 Initial release.
Trademarks
All intellectual property is protected by copyright. All trademarks and product names used or referred to are the
copyright of their respective owners. No part of this document may be reproduced, stored in a retrieval system or
transmitted in any form or by any means, electronic, mechanical, chemical, photocopy, recording or otherwise without
the prior written permission of Gemalto NV
Acknowledgements
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit.
(http://www.openssl.org)
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This product includes
software written by Tim Hudson (tjh@cryptsoft.com).
This product includes software developed by the University of California, Berkeley and its contributors.
This product uses Brian Gladman’s AES implementation.
Refer to the End User License Agreement for more information.
Regulatory Compliance
This product complies with the following regulatory regulations. To ensure compliancy, ensure that you install the
products as specified in the installation instructions and use only SafeNet-supplied or approved accessories.
USA, FCC
This device complies with Part 15 of the FCC rules. Operation is subject to the following two conditions:
(1) This device may not cause harmful interference, and
(2) This device must accept any interference received, including interference that may cause undesired operation.
This equipment has been tested and found to comply with the limits for a “Class B” digital device, pursuant to part 15 of
the FCC rules. These limits are designed to provide reasonable protection against harmful interference in a residential
installation. This equipment generates, uses and can radiate radio frequency energy and, if not installed and used in
accordance with the instructions, may cause harmful interference to radio communications. However, there is no
guarantee that interference will not occur in a particular installation.
SafeNet Network HSM Appliance Administration Guide
Rellease 6.2 007-011136-007 Rev. A December 2015 Copyright 2015 Gemalto NVAll rights reserved.
2
![](https://csdnimg.cn/release/download_crawler_static/89261125/bg3.jpg)
If this equipment does cause harmful interference to radio or television reception, which can be determined by turning
the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following
measures:
• Reorient or relocate the receiving antenna
• Increase the separation between the equipment and receiver
• Connect the equipment into an outlet on a circuit different from that to which the receiver is connected
• Consult the dealer or an experienced radio/TV technician for help
Changes or modifications not expressly approved by SafeNet could void the user’s authority to operate the equipment.
Canada
This class B digital apparatus meets all requirements of the Canadian interference- causing equipment regulations.
Europe
This product is in conformity with the protection requirements of EC Council Directive 2004/108/EC. Conformity is
declared to the following applicable standards for electro-magnetic compatibility immunity and susceptibility;
CISPR22and IEC801. This product satisfies the CLASS B limits of EN 55022.
Disclaimer
Gemalto makes no representations or warranties with respect to the contents of this document and specifically
disclaims any implied warranties of merchantability or fitness for any particular purpose. Furthermore, Gemalto
reserves the right to revise this publication and to make changes from time to time in the content hereof without the
obligation upon Gemalto to notify any person or organization of any such revisions or changes.
We have attempted to make these documents complete, accurate, and useful, but we cannot guarantee them to be
perfect. When we discover errors or omissions, or they are brought to our attention, we endeavor to correct them in
succeeding releases of the product.
Gemalto invites constructive comments on the contents of this document. Send your comments, together with your
personal and/or company details to the address below.
Contact Method Contact Information
Mail Gemalto NV
4690 Millennium Drive
Belcamp, Maryland 21017
USA
Email techpubs@safenet-inc.com
SafeNet Network HSM Appliance Administration Guide
Rellease 6.2 007-011136-007 Rev. A December 2015 Copyright 2015 Gemalto NVAll rights reserved.
3
![](https://csdnimg.cn/release/download_crawler_static/89261125/bg4.jpg)
CONTENTS
PREFACE About the Appliance Administration Guide 7
Customer Release Notes 8
Gemalto Rebranding 8
Audience 8
Document Conventions 9
Notes 9
Cautions 9
Warnings 9
Command Syntax and Typeface Conventions 9
Support Contacts 10
1 Appliance Hardware Functions 12
Front-panel Display 12
Condition Codes 12
Display Conventions 14
System Behavior with Hardware Tamper Events 14
Tampering with the Appliance 14
Decommission 15
What Happens When You Tamper - Including Opening the Fan Bay 15
Summary of Your Responses to Tamper Events 23
Shutdown or Reboot 23
No Physical Access to SafeNet Network HSM Appliance 24
Automatic Restart Following a Power Interruption 24
Power Supply and Fan Maintenance 24
Replacing a Power Supply 25
The Fans 26
Summary 31
HSM Emergency Decommission Button 31
What the Emergency Decommission Button Does 31
When to Use the Emergency Decommission Button 32
Power Consumption 32
Frequently Asked Questions 33
We were configuring rack power for several SafeNet Enterprise HSMs - planning peak load, etc. When we re-
connected rack power, not all the SafeNet Network HSM appliances came on. 33
What actions must I take to move a SafeNet HSM appliance from one datacenter to another? 33
Failed Logins and Lockout on SafeNet Appliance 33
2 Client Connections 35
Connections to the Appliance - Limits 35
SafeNet Network HSM Port Usage 36
Standard Ports 36
Additional Ports 36
SafeNet Network HSM Appliance Port Bonding 37
SafeNet Network HSM Appliance Administration Guide
Release 6.2 007-011136-007Rev. A December 2015 Copyright 2015 Gemalto NVAll rights reserved.
4
![](https://csdnimg.cn/release/download_crawler_static/89261125/bg5.jpg)
Technical Details 37
Using Port Bonding 37
Client Startup Delay Across Mixed Subnets 38
Using Public-Key Authentication 38
Public Key Authentication to a SafeNet Appliance Using UNIX SSH Clients 38
Set up Public-Key SSH access for other SafeNet Network HSM users 40
NTLS Keys in Hardware or in Software 41
Moving into 'Hardware' (the HSM) 41
Going Back to 'Software' 41
Additional Notes 41
When to Restart NTLS 42
NTLS (SSL) Performance Issue 43
Impact of the service restart ntls Command 43
Messages During an SSH Session 43
Timeouts 44
Network Receive Timeout 44
3 Users and Passwords 45
HSM Login [Trusted Path] 45
Roles 45
Named Administrative Users and Their Assigned Roles 46
Abilities or Privileges of Created Users 46
Why Create Extra Administrative Users? 46
Implications of Backup and Restore of User Profiles 47
Security of Shell User Accounts 47
Changing Appliance Passwords 47
Appliance 47
HSMs and Partitions 48
Forgotten Passwords 48
Help! I have lost my blue/black/red/orange/purple/white PED Key or Ihave forgotten the password! 49
But I don't have keys or secrets in secure on-site or off-site storage! What do I do? 49
I have my PEDKey, but I forgot my PEDPIN! What can I do? 51
I have my PED Keys and my PEDPINS, but I can't remember which one goes with which HSM (or partition)!52
Recover or Reset the Admin Account Password 52
4 Timestamping – NTP and Time Drift 55
Correcting Time Drift 55
First, establish the drift that exists for your appliance 55
NTP and Secure NTP on SafeNet Network HSM 58
What If I Can't Use NTP? 58
References 59
Example Using Simple NTP 59
Using Secure NTP 62
Example Using Secure NTP 63
Timezones and Timezone Codes 65
Timezone Codes 65
5 System Logging 73
Notes About Logging 73
SafeNet Network HSM Appliance Administration Guide
Release 6.2 007-011136-007 Rev. A December 2015 Copyright 2015 Gemalto NVAll rights reserved.
5
剩余82页未读,继续阅读
资源评论
![avatar-default](https://csdnimg.cn/release/downloadcmsfe/public/img/lazyLogo2.1882d7f4.png)
![avatar](https://profile-avatar.csdnimg.cn/467688ca2c384571b77593961c3bfd08_jspseo.jpg!1)
wwwarewow
- 粉丝: 4463
- 资源: 2485
![benefits](https://csdnimg.cn/release/downloadcmsfe/public/img/vip-rights-1.c8e153b4.png)
下载权益
![privilege](https://csdnimg.cn/release/downloadcmsfe/public/img/vip-rights-2.ec46750a.png)
C知道特权
![article](https://csdnimg.cn/release/downloadcmsfe/public/img/vip-rights-3.fc5e5fb6.png)
VIP文章
![course-privilege](https://csdnimg.cn/release/downloadcmsfe/public/img/vip-rights-4.320a6894.png)
课程特权
![rights](https://csdnimg.cn/release/downloadcmsfe/public/img/vip-rights-icon.fe0226a8.png)
开通VIP
上传资源 快速赚钱
我的内容管理 展开
我的资源 快来上传第一个资源
我的收益
登录查看自己的收益我的积分 登录查看自己的积分
我的C币 登录后查看C币余额
我的收藏
我的下载
下载帮助
![voice](https://csdnimg.cn/release/downloadcmsfe/public/img/voice.245cc511.png)
![center-task](https://csdnimg.cn/release/downloadcmsfe/public/img/center-task.c2eda91a.png)
安全验证
文档复制为VIP权益,开通VIP直接复制
![dialog-icon](https://csdnimg.cn/release/downloadcmsfe/public/img/green-success.6a4acb44.png)