How to specify the Safenet slot to use?
Originally Published: 2014-12-17
Article Number
Applies To
Issue
- how to specify the Safenet slot to use?
- can a High Availability (HA) slot be used?
Resolution
- provider.profile
- provider.slot
- provider.profile=level1Sn
- provider.profile=level1Sn5
- provider.slot=1
Using the Safenet command "vtl verify", this will show you all available slots. Example, if you have configured the Safenet client with two HSMs, that command will show two slots (1 and 2) with their own slot "serial number". Then if HA is configured using Safenet's commands (please refer to Safenet documentation here), the command "vtl verify" will still show you only slot 1 and slot 2 as the "vtl verify" command only shows physical slots. You should then turn on HA, which will cause the command "vtl verify" to then show only one slot (slot 1) but that slot serial number will be the HA slot. You should use this virtual slot number in keyManagerServer.properties.
To view the HA slot, you can use the Safenet command "cmu list"
If HAOnly=1 is set in Chrystoki.conf, then the API will only present one slot which is the HA slot (Vtl verify still showing 2 slots)
If HAOnly=0 then the API will present all slots (1, 2 and 3) (vtl verify still showing 2 slots)
The ultimate recommendation is to set “provider.slot=1” and to have “HAOnly=1” at all times.
So:
- Configure Safenet HA: you will see all standard slots plus the virtual slot
- Turn on Safenet HA: standard slots will disapear, leaving only the virtual slot visible
- Use this slot number for "provider.slot" in keyManagerServer.properties
Related Articles
Unable to add or manage user in RSA Authentication Manager; getting the error: The specified ID is already in use by unre… Number of Views enVision: how to specify just one collector using lsdata Number of Views Specify the Default RADIUS Profile Number of Views How to create a new ActiveMQ KahaDB for use with AFX in RSA Identity Governance & Lifecycle Number of Views How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle Number of Views
Trending Articles
Connection fails to Cloud Authentication Service when connecting through a proxy server from RSA Authentication Manager to… Downloading RSA Authentication Manager license files or RSA Software token seed records Unable to login to RSA Authentication Manager Security Console as super admin RSA Authentication Manager 8.9 Release Notes (January 2026) How to manipulate imported RSA SecurID Software Token(s) on an iPhone or iPad device
Don't see what you're looking for?
