payShield 10K Installation and User Guide
© Thales Group
Page 175
All Rights Reserved
The UI will generate a SHA-256 Hash over as set of available commands. You can use an offline tools to compute
the hash and compare it with the value displayed to ensure that two or more HSMs have the same set of commands
available.
8.10.8 Audit Settings
The HSM’s standard auditing capabilities include auditing (i.e., logging) of various events in the HSM’s Audit Log.
The Auditing accordion allows users to Click which items are to be audited and which are not when the unit is
offline or in secure state and properly authorized.
After making changes press the “Apply” button to commit the changes to the HSM.
8.10.8.1 Audit - General
Certain sensitive functions, such as key management, authorizations, configurations and diagnostic tests are
always recorded in the audit log and their auditing cannot be disabled.
In the General tab, user may enable auditing of the following events:
•
User Actions
•
Error Responses to Host Commands
•
Utilization Data Resets
•
Diagnostic Self Tests
•
ACL Connection Failures