Create an HSM crypto user using CloudHSM CLI - AWS CloudHSM

Create an HSM crypto user using CloudHSM CLI

Follow these steps to create a hardware security module (HSM) crypto user (CU) using the CloudHSM CLI.

  1. Use the following command to start CloudHSM CLI interactive mode.

    Linux
    $ /opt/cloudhsm/bin/cloudhsm-cli interactive
    Windows
    PS C:\> & "C:\Program Files\Amazon\CloudHSM\bin\cloudhsm-cli.exe" interactive

  2. Use the login command and log in to the cluster as the admin.

    aws-cloudhsm > login --username <username> --role admin

  3. The system prompts you for your password. Enter the password, and the output shows that the command was successful.

    Enter password:
{
  "error_code": 0,
  "data": {
    "username": "<USERNAME>",
    "role": "admin"
  }
}

  4. Enter the following command to create a crypto user:

    aws-cloudhsm > user create --username <username> --role crypto-user

  5. Enter the password for the new crypto user.

  6. Re-enter the password to confirm the password you entered is correct.