3.4.11.2 Service Mode

The service mode is designed for normal U-HSM server operation and can be used under the non-administrator account. The server configuration must be performed by a user with administrator privileges.

While a non-administrator user has restricted access to the system resources and services, the U-HSM Control Panel application allows a non-administrator user to perform certain administration tasks of the U-HSM server.

For more details about service mode of execution and setup instructions, see section Running U-HSM Server as a Service.

The U-HSM server executable U-HSMServer.exe is located in the Server directory.

For example, C:\Microsemi\Server\U-HSMServer.exe

1. Start the console window: type cmd in the Windows Start Menu window and right-click Command Prompt desktop app. Then, choose Run as administrator.
2. In the open console window, navigate to the "server" directory and type mu-hsmserver.exe.

Upon startup, the server initializes a session with the HSM module. The following figure shows the output:

If the SEE machine firmware load is still in progress, the session initialization waits for the load to finish. The SEE machine firmware load takes place in the following cases:

• Turning on or restarting the PC hosting the U-HSM server.
• Restarting the nCipher nFast Server service that handles HSM modules.
• HSM module reinitialization through issuing Security World commands, such as nopclearfail.
• Setting up or changing settings for the SEE firmware load (for example, loadsee-setup).

Sample output after session initialization is finished after waiting for SEE firmware load, as shown in Figure 3-19.

The session can be terminated by pressing the Enter key:

Both the log files are important during failure analysis and can be sent to Microchip technical support for analysis.