anonkneti
anonkneti [OPTIONS] <ADDRESS>
Anonymous kNETI request command that polls an HSM for its connection details.
It returns the ESN and HK
NETI key hash from the HSM identified by its IP address.
For more information, see Configuring the remote file system (RFS).
Option | Description | ||
---|---|---|---|
|
If your network is secure and you know the IP address of the HSM, you can obtain the ESN and hash of the
The command returns output in the following form:
In this example output, |
||
|
Confirms connectivity to an HSM that you expect to be at <port-number>.
The output format is the same as without the port number: the ESN and the hash of the
Default:
|
||
Module selection |
|||
|
Specifies the number ID to use. |
||
Help options |
|||
|
Displays help for |
||
|
Displays a brief usage summary for |
||
|
Displays the version number of the Security World Software that deploys |
anonkneti examples
Example 1: Run anonkneti
against an HSM to check availability
anonkneti <ip-address>
If anonkneti
can’t reach the HSM, it displays an error: no route to
host/destination unreachable
.
If the remote device is not an HSM it will also error.
Example 2: Run anonkneti
against localhost to obtain the softkneti hash
anonkneti -m 0 127.0.0.1
anonkneti
polls the local hardserver for its softkneti hash.
You can then provide the softkneti hash to the HSM alongside, or instead of, the IP address when configuring client connections for stronger authentication.