A Hardware security module (HSM) is a physical computing device that safeguards and manages digital keys for strong authentication and provides crypto processing. Avi Load Balancer supports configuration of dedicated interfaces on Avi Load Balancer Controller and Service Engines for hardware security module (HSM) and sideband (ASM) communication on Cisco Cloud Services Platform (CSP). HSM and ASM communication are supported for both an existing setup and a new Avi Load Balancer setup.

The support for HSM and ASM communication on Avi Load Balancer is as follows:

Avi Load Balancer supports dedicated interfaces for:

  • HSM communication on new Service Engines.

  • HSM communication on existing Service Engines.

  • ASM (sideband) communication on new and existing Service Engines.

  • Communication on new and existing Controllers.

Hardware Security Module Package Upload

Avi Load Balancer includes integration support for networked Thales Luna HSM products (formerly SafeNet Luna Network HSM).

To integrate with HSM, upload of the Avi Load Balancer user’s HSM package is required.

To upload a customer HSM package into Avi Load Balancer:

  1. Navigate to Administration > Settings > Upload HSM Packages.

  2. Click Select File, and navigate to the file's location.

  3. Click Upload File.