User guide
c. Paste the public key into the open file and save it with the file name displayed in step 1 from the
confirmation page. Make sure that you save the file with the .pem file extension, for example:
123456789mykey.pem.
d. Upload the .pem file to your HSM.
e. On the HSM, open a command-prompt window and run the commands listed in step 4 on the
confirmation page to register the key.The command uses the following format, with ClientName,
KeyFilename, and PartitionName being values you need to replace with your own:
client register -client ClientName -hostname KeyFilename
client assignPartition -client ClientName -partition PartitionName
For example:
client register -client MyClient -hostname 123456789mykey
client assignPartition -client MyClient -partition MyPartition
f. After you register the key on the HSM, click Next.
7. After the HSM client certificate is created and registered, click one of the following buttons:
• Launch a Cluster with HSM. This option starts the process of launching a new cluster. During
the process, you can select an HSM to store encryption keys. For more information about the
launch cluster process, see Managing Clusters Using the Console (p. 13).
Create an HSM Connection. This option starts the Create HSM Connection process.
View Certificates. This option returns you to HSM in the navigation pane and displays a list of
client certificates on the Certificates tab.
Previous.This option returns you to the Create HSM Client Certificates confirmation page.
Close. This option returns you to HSM in the navigation pane and displays a list of HSM
connections on the Connections tab.
API Version 2012-12-01
103
Amazon Redshift Management Guide
Configuring HSM Using the Amazon Redshift Console