root@ns# pwd
    root@ns# sh safenet_config


    root@ns# cd /var/safenet/safenet/lunaclient/bin
    root@ns# ./vtl createcert -n
    Private Key created and written to: /var/safenet/safenet/lunaclient/cert/client/
    Certificate created and written to: /var/safenet/safenet/lunaclient/cert/client/

将证书复制到 HSM

    root@ns# scp /var/safenet/safenet/lunaclient/cert/client/ admin@
    admin@'s password:          100%  818     0.8KB/s   00:00

将证书和密钥从 HSM 复制到 NetScaler 设备

    root@ns# scp admin@ /var/Thales Luna/safenet/lunaclient/server.2.7.pem
    admin@'s password:

    server.pem            100% 1164     1.1KB/s   00:01

使用 SSH 连接到泰雷兹 Luna HSM

    ssh admin@
    Connecting to
    Connection established.
    To escape to local shell, press 'Ctrl+Alt+]'.

    Last login: Thu Jun 23 02:20:29 2016 from

    Luna SA 5.2.3-1 Command Line Shell - Copyright (c) 2001-2014 SafeNet, Inc. All rights reserved.

    [Safenet1] lunash:>hsm login

      Please enter the HSM Administrators' password:
      > *******

    'hsm login' successful.

    Command Result : 0 (Success)
    [Safenet1] lunash:>

在泰雷兹 Luna HSM 上注册 NetScaler

    [Safenet1] lunash:>client register -client ns175 -ip

    'client register' successful.

    Command Result : 0 (Success)
    [Safenet1] lunash:>


    [Safenet1] lunash:>client assignPartition -client ns175 -partition p2

    'client assignPartition' successful.

    Command Result : 0 (Success)
    [Safenet1] lunash:>

在 NetScaler 上注册 HSM 及其证书

    root@ns# ./vtl addserver -n -c /var/safenet/safenet/lunaclient/server.2.7.pem

    New server successfully added to server list.

验证 ADC 和 HSM 之间的网络信任链接 (NTL) 连接

    root@ns# ./vtl verify

    The following Luna SA Slots/Partitions were found:

    Slot        Serial #                  Label
    ====      ================           =====
       0              477877010          p2


    root@ns# cp /etc/Chrystoki.conf /var/safenet/config/

在引导时配置 Gateway 关守护进程的自动启动

    touch /var/safenet/safenet_is_enrolled