Create an HSM crypto user using CloudHSM CLI - AWS CloudHSM

Create an HSM crypto user using CloudHSM CLI

Follow these steps to create a hardware security module (HSM) crypto user (CU) using the CloudHSM CLI.

  1. Use the following command to start CloudHSM CLI interactive mode.

    Linux
    $ /opt/cloudhsm/bin/cloudhsm-cli interactive
    Windows
    C:\Program Files\Amazon\CloudHSM\bin\> .\cloudhsm-cli.exe interactive
  2. Use the login command and log in to the cluster as the admin.

    aws-cloudhsm > login --username <USERNAME> --role admin
  3. The system prompts you for your password. Enter the password, and the output shows that the command was successful.

    Enter password: { "error_code": 0, "data": { "username": "admin", "role": "admin" } }
  4. Enter the following command to create a crypto user:

    aws-cloudhsm > user create --username <USERNAME> --role crypto-user
  5. Enter the password for the new crypto user.

  6. Re-enter the password to confirm the password you entered is correct.