Menu
AWS CloudHSM
User Guide

Lost Connection to the Cluster

When you configured the AWS CloudHSM client, you provided the IP address of the first HSM in your cluster. This IP address is saved in the configuration file for the AWS CloudHSM client. When the client starts, it tries to connect to this IP address. If it can't—for example, because the HSM failed or you deleted it—you might see errors like the following:

LIQUIDSECURITY: Daemon socket connection error
LIQUIDSECURITY: Invalid Operation

To resolve these errors, update the configuration file with the IP address of an active, reachable HSM in the cluster.

To update the configuration file for the AWS CloudHSM client

  1. Use one of the following ways to find the IP address of an active HSM in your cluster.

    You need this IP address in a subsequent step.

  2. Use the following command to stop the client.

    Amazon LinuxUbuntu
    Amazon Linux
    $ sudo stop cloudhsm-client
    Ubuntu
    $ sudo service cloudhsm-client stop
  3. Use the following command to update the client's configuration file, providing the IP address that you found in a previous step.

    $ sudo /opt/cloudhsm/bin/configure -a <IP address>
  4. Use the following command to start the client.

    Amazon LinuxUbuntu
    Amazon Linux
    $ sudo start cloudhsm-client
    Ubuntu
    $ sudo service cloudhsm-client start