Change HSM user passwords using CloudHSM CLI
Use the user change-password command in the CloudHSM CLI to change a hardware security module (HSM) user's password.
User types and passwords are case sensitive, but user names are not case sensitive.
Admin, crypto user (CU), and appliance user (AU) can change their own password. To change the password of another user, you must log in as an admin. You cannot change the password of a user who is currently logged in.
To change your own password
-
Use the following command to start CloudHSM CLI interactive mode.
-
Use the login command and log in as the user with the password you want to change.
aws-cloudhsm >
login --username
<USERNAME>
--role<ROLE>
-
Enter the user's password.
Enter password:
{ "error_code": 0, "data": { "username": "admin1", "role": "admin" } }
-
Enter the user change-password command.
aws-cloudhsm >
user change-password --username
<USERNAME>
--role<ROLE>
-
Enter the new password.
-
Re-enter the new password.
To change the password of another user
-
Use the following command to start CloudHSM CLI interactive mode.
-
Use the login command and log in as an admin.
aws-cloudhsm >
login --username
<USERNAME>
--role admin -
Enter the admin's password.
Enter password:
{ "error_code": 0, "data": { "username": "admin1", "role": "admin" } }
-
Enter the user change-password command along with the username of the user whose password you want to change.
aws-cloudhsm >
user change-password --username
<USERNAME>
--role<ROLE>
-
Enter the new password.
-
Re-enter the new password.
For more information about user change-password, see user change-password.