Step 5 – Nortel Networks NN46120-104 User Manual
Page 60
60
Initial Setup
— The purple HSM Security Officer iKey, embossed with
"HSM-SO".
— The blue HSM User iKey, embossed with "HSM-USER".
Label these iKeys and HSM card 1 in a way so that the
connection between them is obvious. If you will use more
than one ASA 310-FIPS device in the cluster, you must also
take steps to identify which pair of iKeys is used on which
HSM card on which device in the cluster.
You also need to make sure that you can easily access the
USB ports on the HSM cards, located on the rear of the ASA
310-FIPS device. When an operation requires inserting an
HSM iKey, a flashing LED will direct you to the USB port on the
correct HSM card.
(
new
setup, continued)
Verify that HSM-SO iKey (purple) is inserted in card 0
(with flashing LED).
Hit enter when done.
Enter a new HSM-SO password for card 0: <define an
HSM-SO password>
Re-enter to confirm:
The HSM-SO iKey has been updated.
Verify that HSM-USER iKey (blue) is inserted in card 0
(with flashing LED).
Hit enter when done.
Enter a new HSM-USER password for card 0: <define an
HSM-USER password>
Re-enter to confirm:
The HSM-USER iKey has been updated.
Card 0 successfully initialized.
Note: For more information about iKeys, see
iKey Authentication” (page 30)
5
Initialize HSM card 1 by inserting the second pair of HSM-SO
and HSM-USER iKeys, and by defining passwords.
Remember to take steps to label each pair of HSM-SO and
HSM-USER iKeys and the HSM card to which each set of iKeys
is associated during the initialization.
Nortel VPN Gateway
User Guide
NN46120-104
02.01
Standard
14 April 2008
Copyright © 2007-2008 Nortel Networks
.