Operation Guide

Restrictions

Dedicated HSM instances must be used together with VPC. After a Dedicated HSM instance is purchased, you need to configure its VPC, security group, and NIC on the management console before using it.
For security purposes, Dedicated HSM instances do not provide services for the public network. To manage the instances, deploy their management tool in their VPC.

Operation Guide

To use Dedicated HSM on the cloud, you can purchase Dedicated HSM instances through the management console. After a Dedicated HSM instance is purchased, you need to configure the instance on the Dedicated HSM page, and then you will receive the UKey sent by Dedicated HSM. You need to use the UKey to initialize and control the instance. You can use the management tool to authorize service applications the permission to access Dedicated HSM instances. Figure 1 illustrates the operation flow.

Figure 1 Operation Guide

Table 1 describes the operation guide.

**Table 1** Operation guide descriptions
No.	Procedure	Description	Operated By
1	Purchase a Dedicated HSM instance.	Purchase an instance on the Dedicated HSM management console. For details, see Purchasing a Dedicated HSM Instance.	User
2	Activate a Dedicated HSM instance.	After an instance is purchased, you need to configure the instance on the management console. You need to select the VPC where the instance belongs and the function type of the instance. For details, see Activating a Dedicated HSM Instance.	User
3	Obtain the UKey, initialization documents, and software.	A security expert sends the Ukey to the email address you provided. A UKey is the only identifier of a Dedicated HSM user. Keep it properly. A security expert will provide you with the software and guide for initializing Dedicated HSM instances. If you have any questions, contact the expert. NOTE: You can submit a Service Ticket to provide the UKey recipient address and contact security experts for guidance.	Dedicated HSM security expert
4	Initialize and manage instances (involving UKey authentication).	Install the tool for managing Dedicated HSM instances on the instance management node. Use the UKey and the management tool to initialize the Dedicated HSM instance, and register an administrator to manage the Dedicated HSM instance and the key. For details, see Initializing a Dedicated HSM Instance.	User
5	Install the security agent and granting access permissions.	Install and initialize the security agent on service application nodes. For details, see Installing the Security Agent and Granting Access Permissions.	User
6	Access the instance.	Service applications access the Dedicated HSM instances through APIs or SDK.	User

Parent topic: Dedicated HSM

Last Article: Dedicated HSM

Next Article: Purchasing a Dedicated HSM Instance

Did this article solve your problem?

Thank you for your score！Your feedback would help us improve the website.

Products

Compute

Application

Dedicated Cloud

Storage

Management & Deployment

Migration

Network

Enterprise Intelligence

Video

Database

Edge Cloud Services

DevCloud

Security

Cloud Communications

Internet of Things

Solutions

Industry-Specific Solutions

General-Purpose Solutions

Security

DevOps

Enterprise Intelligence

Essential Platform

Big Data

Visual Cognition

Speech and Semantics

Support

Help Center

Customer Services

Developers

Console

语言 - Language

中国站 - 简体中文

中国站 - English

International - 简体中文

International - English

Help Center

Operation Guide

Restrictions

Operation Guide