Lost connection to the cluster
When you configured the AWS CloudHSM client, you provided the IP address of the first HSM in your cluster. This IP address is saved in the configuration file for the AWS CloudHSM client. When the client starts, it tries to connect to this IP address. If it can't—for example, because the HSM failed or you deleted it—you might see errors like the following:
LIQUIDSECURITY: Daemon socket connection error
LIQUIDSECURITY: Invalid Operation
To resolve these errors, update the configuration file with the IP address of an active, reachable HSM in the cluster.
To update the configuration file for the AWS CloudHSM client
-
Use one of the following ways to find the IP address of an active HSM in your cluster.
-
View the HSMs tab on the cluster details page in the AWS CloudHSM console
. -
Use the AWS Command Line Interface (AWS CLI) to issue the describe-clusters command.
You need this IP address in a subsequent step.
-
-
Use the following command to stop the client.
-
Use the following command to update the client's configuration file, providing the IP address that you found in a previous step.
$
sudo /opt/cloudhsm/bin/configure -a
<IP address>
-
Use the following command to start the client.