SDK for PHP 3.x
Amazon CloudHSM 2014-05-30
- Client: Aws\CloudHsm\CloudHsmClient
- Service ID: cloudhsm
- Version: 2014-05-30
This page describes the parameters and results for the operations of the Amazon CloudHSM (2014-05-30), and shows how to use the Aws\CloudHsm\CloudHsmClient object to call the described operations. This documentation is specific to the 2014-05-30 API version of the service.
Operation Summary
Each of the following operations can be created from a client using
$client->getCommand('CommandName'), where "CommandName" is the
name of one of the following operations. Note: a command is a value that
encapsulates an operation and the parameters used to create an HTTP request.
You can also create and send a command immediately using the magic methods
available on a client object: $client->commandName(/* parameters */).
You can send the command asynchronously (returning a promise) by appending the
word "Async" to the operation name: $client->commandNameAsync(/* parameters */).
- AddTagsToResource ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- CreateHapg ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- CreateHsm ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- CreateLunaClient ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- DeleteHapg ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- DeleteHsm ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- DeleteLunaClient ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- DescribeHapg ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- DescribeHsm ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- DescribeLunaClient ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- GetConfigFiles ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ListAvailableZones ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ListHapgs ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ListHsms ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ListLunaClients ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ListTagsForResource ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ModifyHapg ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ModifyHsm ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- ModifyLunaClient ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
- RemoveTagsFromResource ( array $params = [] )
- This is documentation for AWS CloudHSM Classic.
Operations
AddTagsToResource
$result = $client->addTagsToResource([/* ... */]); $promise = $client->addTagsToResourceAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Adds or overwrites one or more tags for the specified AWS CloudHSM resource.
Each tag consists of a key and a value. Tag keys must be unique to each resource.
Parameter Syntax
$result = $client->addTagsToResource([
'ResourceArn' => '<string>', // REQUIRED
'TagList' => [ // REQUIRED
[
'Key' => '<string>', // REQUIRED
'Value' => '<string>', // REQUIRED
],
// ...
],
]);
Parameter Details
Members
- ResourceArn
-
- Required: Yes
- Type: string
The Amazon Resource Name (ARN) of the AWS CloudHSM resource to tag.
- TagList
-
- Required: Yes
- Type: Array of Tag structures
One or more tags.
Result Syntax
[
'Status' => '<string>',
]
Result Details
Members
- Status
-
- Required: Yes
- Type: string
The status of the operation.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
CreateHapg
$result = $client->createHapg([/* ... */]); $promise = $client->createHapgAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Creates a high-availability partition group. A high-availability partition group is a group of partitions that spans multiple physical HSMs.
Parameter Syntax
$result = $client->createHapg([
'Label' => '<string>', // REQUIRED
]);
Parameter Details
Members
- Label
-
- Required: Yes
- Type: string
The label of the new high-availability partition group.
Result Syntax
[
'HapgArn' => '<string>',
]
Result Details
Members
- HapgArn
-
- Type: string
The ARN of the high-availability partition group.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
CreateHsm
$result = $client->createHsm([/* ... */]); $promise = $client->createHsmAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Creates an uninitialized HSM instance.
There is an upfront fee charged for each HSM instance that you create with the CreateHsm operation. If you accidentally provision an HSM and want to request a refund, delete the instance using the DeleteHsm operation, go to the AWS Support Center, create a new case, and select Account and Billing Support.
It can take up to 20 minutes to create and provision an HSM. You can monitor the status of the HSM with the DescribeHsm operation. The HSM is ready to be initialized when the status changes to RUNNING.
Parameter Syntax
$result = $client->createHsm([
'ClientToken' => '<string>',
'EniIp' => '<string>',
'ExternalId' => '<string>',
'IamRoleArn' => '<string>', // REQUIRED
'SshKey' => '<string>', // REQUIRED
'SubnetId' => '<string>', // REQUIRED
'SubscriptionType' => 'PRODUCTION', // REQUIRED
'SyslogIp' => '<string>',
]);
Parameter Details
Members
- ClientToken
-
- Type: string
A user-defined token to ensure idempotence. Subsequent calls to this operation with the same token will be ignored.
- EniIp
-
- Type: string
The IP address to assign to the HSM's ENI.
If an IP address is not specified, an IP address will be randomly chosen from the CIDR range of the subnet.
- ExternalId
-
- Type: string
The external ID from
IamRoleArn, if present. - IamRoleArn
-
- Required: Yes
- Type: string
The ARN of an IAM role to enable the AWS CloudHSM service to allocate an ENI on your behalf.
- SshKey
-
- Required: Yes
- Type: string
The SSH public key to install on the HSM.
- SubnetId
-
- Required: Yes
- Type: string
The identifier of the subnet in your VPC in which to place the HSM.
- SubscriptionType
-
- Required: Yes
- Type: string
Specifies the type of subscription for the HSM.
-
PRODUCTION - The HSM is being used in a production environment.
-
TRIAL - The HSM is being used in a product trial.
- SyslogIp
-
- Type: string
The IP address for the syslog monitoring server. The AWS CloudHSM service only supports one syslog monitoring server.
Result Syntax
[
'HsmArn' => '<string>',
]
Result Details
Members
- HsmArn
-
- Type: string
The ARN of the HSM.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
CreateLunaClient
$result = $client->createLunaClient([/* ... */]); $promise = $client->createLunaClientAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Creates an HSM client.
Parameter Syntax
$result = $client->createLunaClient([
'Certificate' => '<string>', // REQUIRED
'Label' => '<string>',
]);
Parameter Details
Members
- Certificate
-
- Required: Yes
- Type: string
The contents of a Base64-Encoded X.509 v3 certificate to be installed on the HSMs used by this client.
- Label
-
- Type: string
The label for the client.
Result Syntax
[
'ClientArn' => '<string>',
]
Result Details
Members
- ClientArn
-
- Type: string
The ARN of the client.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
DeleteHapg
$result = $client->deleteHapg([/* ... */]); $promise = $client->deleteHapgAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Deletes a high-availability partition group.
Parameter Syntax
$result = $client->deleteHapg([
'HapgArn' => '<string>', // REQUIRED
]);
Parameter Details
Members
- HapgArn
-
- Required: Yes
- Type: string
The ARN of the high-availability partition group to delete.
Result Syntax
[
'Status' => '<string>',
]
Result Details
Members
- Status
-
- Required: Yes
- Type: string
The status of the action.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
DeleteHsm
$result = $client->deleteHsm([/* ... */]); $promise = $client->deleteHsmAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Deletes an HSM. After completion, this operation cannot be undone and your key material cannot be recovered.
Parameter Syntax
$result = $client->deleteHsm([
'HsmArn' => '<string>', // REQUIRED
]);
Parameter Details
Members
- HsmArn
-
- Required: Yes
- Type: string
The ARN of the HSM to delete.
Result Syntax
[
'Status' => '<string>',
]
Result Details
Members
- Status
-
- Required: Yes
- Type: string
The status of the operation.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
DeleteLunaClient
$result = $client->deleteLunaClient([/* ... */]); $promise = $client->deleteLunaClientAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Deletes a client.
Parameter Syntax
$result = $client->deleteLunaClient([
'ClientArn' => '<string>', // REQUIRED
]);
Parameter Details
Members
- ClientArn
-
- Required: Yes
- Type: string
The ARN of the client to delete.
Result Syntax
[
'Status' => '<string>',
]
Result Details
Members
- Status
-
- Required: Yes
- Type: string
The status of the action.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
DescribeHapg
$result = $client->describeHapg([/* ... */]); $promise = $client->describeHapgAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Retrieves information about a high-availability partition group.
Parameter Syntax
$result = $client->describeHapg([
'HapgArn' => '<string>', // REQUIRED
]);
Parameter Details
Members
- HapgArn
-
- Required: Yes
- Type: string
The ARN of the high-availability partition group to describe.
Result Syntax
[
'HapgArn' => '<string>',
'HapgSerial' => '<string>',
'HsmsLastActionFailed' => ['<string>', ...],
'HsmsPendingDeletion' => ['<string>', ...],
'HsmsPendingRegistration' => ['<string>', ...],
'Label' => '<string>',
'LastModifiedTimestamp' => '<string>',
'PartitionSerialList' => ['<string>', ...],
'State' => 'READY|UPDATING|DEGRADED',
]
Result Details
Members
- HapgArn
-
- Type: string
The ARN of the high-availability partition group.
- HapgSerial
-
- Type: string
The serial number of the high-availability partition group.
- HsmsLastActionFailed
-
- Type: Array of strings
- HsmsPendingDeletion
-
- Type: Array of strings
- HsmsPendingRegistration
-
- Type: Array of strings
- Label
-
- Type: string
The label for the high-availability partition group.
- LastModifiedTimestamp
-
- Type: string
The date and time the high-availability partition group was last modified.
- PartitionSerialList
-
- Type: Array of strings
The list of partition serial numbers that belong to the high-availability partition group.
- State
-
- Type: string
The state of the high-availability partition group.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
DescribeHsm
$result = $client->describeHsm([/* ... */]); $promise = $client->describeHsmAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Retrieves information about an HSM. You can identify the HSM by its ARN or its serial number.
Parameter Syntax
$result = $client->describeHsm([
'HsmArn' => '<string>',
'HsmSerialNumber' => '<string>',
]);
Parameter Details
Members
- HsmArn
-
- Type: string
The ARN of the HSM. Either the
HsmArnor theSerialNumberparameter must be specified. - HsmSerialNumber
-
- Type: string
The serial number of the HSM. Either the
HsmArnor theHsmSerialNumberparameter must be specified.
Result Syntax
[
'AvailabilityZone' => '<string>',
'EniId' => '<string>',
'EniIp' => '<string>',
'HsmArn' => '<string>',
'HsmType' => '<string>',
'IamRoleArn' => '<string>',
'Partitions' => ['<string>', ...],
'SerialNumber' => '<string>',
'ServerCertLastUpdated' => '<string>',
'ServerCertUri' => '<string>',
'SoftwareVersion' => '<string>',
'SshKeyLastUpdated' => '<string>',
'SshPublicKey' => '<string>',
'Status' => 'PENDING|RUNNING|UPDATING|SUSPENDED|TERMINATING|TERMINATED|DEGRADED',
'StatusDetails' => '<string>',
'SubnetId' => '<string>',
'SubscriptionEndDate' => '<string>',
'SubscriptionStartDate' => '<string>',
'SubscriptionType' => 'PRODUCTION',
'VendorName' => '<string>',
'VpcId' => '<string>',
]
Result Details
Members
- AvailabilityZone
-
- Type: string
The Availability Zone that the HSM is in.
- EniId
-
- Type: string
The identifier of the elastic network interface (ENI) attached to the HSM.
- EniIp
-
- Type: string
The IP address assigned to the HSM's ENI.
- HsmArn
-
- Type: string
The ARN of the HSM.
- HsmType
-
- Type: string
The HSM model type.
- IamRoleArn
-
- Type: string
The ARN of the IAM role assigned to the HSM.
- Partitions
-
- Type: Array of strings
The list of partitions on the HSM.
- SerialNumber
-
- Type: string
The serial number of the HSM.
- ServerCertLastUpdated
-
- Type: string
The date and time that the server certificate was last updated.
- ServerCertUri
-
- Type: string
The URI of the certificate server.
- SoftwareVersion
-
- Type: string
The HSM software version.
- SshKeyLastUpdated
-
- Type: string
The date and time that the SSH key was last updated.
- SshPublicKey
-
- Type: string
The public SSH key.
- Status
-
- Type: string
The status of the HSM.
- StatusDetails
-
- Type: string
Contains additional information about the status of the HSM.
- SubnetId
-
- Type: string
The identifier of the subnet that the HSM is in.
- SubscriptionEndDate
-
- Type: string
The subscription end date.
- SubscriptionStartDate
-
- Type: string
The subscription start date.
- SubscriptionType
-
- Type: string
Specifies the type of subscription for the HSM.
-
PRODUCTION - The HSM is being used in a production environment.
-
TRIAL - The HSM is being used in a product trial.
- VendorName
-
- Type: string
The name of the HSM vendor.
- VpcId
-
- Type: string
The identifier of the VPC that the HSM is in.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
DescribeLunaClient
$result = $client->describeLunaClient([/* ... */]); $promise = $client->describeLunaClientAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Retrieves information about an HSM client.
Parameter Syntax
$result = $client->describeLunaClient([
'CertificateFingerprint' => '<string>',
'ClientArn' => '<string>',
]);
Parameter Details
Members
- CertificateFingerprint
-
- Type: string
The certificate fingerprint.
- ClientArn
-
- Type: string
The ARN of the client.
Result Syntax
[
'Certificate' => '<string>',
'CertificateFingerprint' => '<string>',
'ClientArn' => '<string>',
'Label' => '<string>',
'LastModifiedTimestamp' => '<string>',
]
Result Details
Members
- Certificate
-
- Type: string
The certificate installed on the HSMs used by this client.
- CertificateFingerprint
-
- Type: string
The certificate fingerprint.
- ClientArn
-
- Type: string
The ARN of the client.
- Label
-
- Type: string
The label of the client.
- LastModifiedTimestamp
-
- Type: string
The date and time the client was last modified.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
GetConfigFiles
$result = $client->getConfigFiles([/* ... */]); $promise = $client->getConfigFilesAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Gets the configuration files necessary to connect to all high availability partition groups the client is associated with.
Parameter Syntax
$result = $client->getConfigFiles([
'ClientArn' => '<string>', // REQUIRED
'ClientVersion' => '5.1|5.3', // REQUIRED
'HapgList' => ['<string>', ...], // REQUIRED
]);
Parameter Details
Members
- ClientArn
-
- Required: Yes
- Type: string
The ARN of the client.
- ClientVersion
-
- Required: Yes
- Type: string
The client version.
- HapgList
-
- Required: Yes
- Type: Array of strings
A list of ARNs that identify the high-availability partition groups that are associated with the client.
Result Syntax
[
'ConfigCred' => '<string>',
'ConfigFile' => '<string>',
'ConfigType' => '<string>',
]
Result Details
Members
- ConfigCred
-
- Type: string
The certificate file containing the server.pem files of the HSMs.
- ConfigFile
-
- Type: string
The chrystoki.conf configuration file.
- ConfigType
-
- Type: string
The type of credentials.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ListAvailableZones
$result = $client->listAvailableZones([/* ... */]); $promise = $client->listAvailableZonesAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Lists the Availability Zones that have available AWS CloudHSM capacity.
Parameter Syntax
$result = $client->listAvailableZones([ ]);
Parameter Details
Members
Result Syntax
[
'AZList' => ['<string>', ...],
]
Result Details
Members
- AZList
-
- Type: Array of strings
The list of Availability Zones that have available AWS CloudHSM capacity.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ListHapgs
$result = $client->listHapgs([/* ... */]); $promise = $client->listHapgsAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Lists the high-availability partition groups for the account.
This operation supports pagination with the use of the NextToken member. If more results are available, the NextToken member of the response contains a token that you pass in the next call to ListHapgs to retrieve the next set of items.
Parameter Syntax
$result = $client->listHapgs([
'NextToken' => '<string>',
]);
Parameter Details
Members
- NextToken
-
- Type: string
The
NextTokenvalue from a previous call toListHapgs. Pass null if this is the first call.
Result Syntax
[
'HapgList' => ['<string>', ...],
'NextToken' => '<string>',
]
Result Details
Members
- HapgList
-
- Required: Yes
- Type: Array of strings
The list of high-availability partition groups.
- NextToken
-
- Type: string
If not null, more results are available. Pass this value to
ListHapgsto retrieve the next set of items.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ListHsms
$result = $client->listHsms([/* ... */]); $promise = $client->listHsmsAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Retrieves the identifiers of all of the HSMs provisioned for the current customer.
This operation supports pagination with the use of the NextToken member. If more results are available, the NextToken member of the response contains a token that you pass in the next call to ListHsms to retrieve the next set of items.
Parameter Syntax
$result = $client->listHsms([
'NextToken' => '<string>',
]);
Parameter Details
Members
- NextToken
-
- Type: string
The
NextTokenvalue from a previous call toListHsms. Pass null if this is the first call.
Result Syntax
[
'HsmList' => ['<string>', ...],
'NextToken' => '<string>',
]
Result Details
Members
- HsmList
-
- Type: Array of strings
The list of ARNs that identify the HSMs.
- NextToken
-
- Type: string
If not null, more results are available. Pass this value to
ListHsmsto retrieve the next set of items.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ListLunaClients
$result = $client->listLunaClients([/* ... */]); $promise = $client->listLunaClientsAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Lists all of the clients.
This operation supports pagination with the use of the NextToken member. If more results are available, the NextToken member of the response contains a token that you pass in the next call to ListLunaClients to retrieve the next set of items.
Parameter Syntax
$result = $client->listLunaClients([
'NextToken' => '<string>',
]);
Parameter Details
Members
- NextToken
-
- Type: string
The
NextTokenvalue from a previous call toListLunaClients. Pass null if this is the first call.
Result Syntax
[
'ClientList' => ['<string>', ...],
'NextToken' => '<string>',
]
Result Details
Members
- ClientList
-
- Required: Yes
- Type: Array of strings
The list of clients.
- NextToken
-
- Type: string
If not null, more results are available. Pass this to
ListLunaClientsto retrieve the next set of items.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ListTagsForResource
$result = $client->listTagsForResource([/* ... */]); $promise = $client->listTagsForResourceAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Returns a list of all tags for the specified AWS CloudHSM resource.
Parameter Syntax
$result = $client->listTagsForResource([
'ResourceArn' => '<string>', // REQUIRED
]);
Parameter Details
Members
- ResourceArn
-
- Required: Yes
- Type: string
The Amazon Resource Name (ARN) of the AWS CloudHSM resource.
Result Syntax
[
'TagList' => [
[
'Key' => '<string>',
'Value' => '<string>',
],
// ...
],
]
Result Details
Members
- TagList
-
- Required: Yes
- Type: Array of Tag structures
One or more tags.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ModifyHapg
$result = $client->modifyHapg([/* ... */]); $promise = $client->modifyHapgAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Modifies an existing high-availability partition group.
Parameter Syntax
$result = $client->modifyHapg([
'HapgArn' => '<string>', // REQUIRED
'Label' => '<string>',
'PartitionSerialList' => ['<string>', ...],
]);
Parameter Details
Members
- HapgArn
-
- Required: Yes
- Type: string
The ARN of the high-availability partition group to modify.
- Label
-
- Type: string
The new label for the high-availability partition group.
- PartitionSerialList
-
- Type: Array of strings
The list of partition serial numbers to make members of the high-availability partition group.
Result Syntax
[
'HapgArn' => '<string>',
]
Result Details
Members
- HapgArn
-
- Type: string
The ARN of the high-availability partition group.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ModifyHsm
$result = $client->modifyHsm([/* ... */]); $promise = $client->modifyHsmAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Modifies an HSM.
This operation can result in the HSM being offline for up to 15 minutes while the AWS CloudHSM service is reconfigured. If you are modifying a production HSM, you should ensure that your AWS CloudHSM service is configured for high availability, and consider executing this operation during a maintenance window.
Parameter Syntax
$result = $client->modifyHsm([
'EniIp' => '<string>',
'ExternalId' => '<string>',
'HsmArn' => '<string>', // REQUIRED
'IamRoleArn' => '<string>',
'SubnetId' => '<string>',
'SyslogIp' => '<string>',
]);
Parameter Details
Members
- EniIp
-
- Type: string
The new IP address for the elastic network interface (ENI) attached to the HSM.
If the HSM is moved to a different subnet, and an IP address is not specified, an IP address will be randomly chosen from the CIDR range of the new subnet.
- ExternalId
-
- Type: string
The new external ID.
- HsmArn
-
- Required: Yes
- Type: string
The ARN of the HSM to modify.
- IamRoleArn
-
- Type: string
The new IAM role ARN.
- SubnetId
-
- Type: string
The new identifier of the subnet that the HSM is in. The new subnet must be in the same Availability Zone as the current subnet.
- SyslogIp
-
- Type: string
The new IP address for the syslog monitoring server. The AWS CloudHSM service only supports one syslog monitoring server.
Result Syntax
[
'HsmArn' => '<string>',
]
Result Details
Members
- HsmArn
-
- Type: string
The ARN of the HSM.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
ModifyLunaClient
$result = $client->modifyLunaClient([/* ... */]); $promise = $client->modifyLunaClientAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Modifies the certificate used by the client.
This action can potentially start a workflow to install the new certificate on the client's HSMs.
Parameter Syntax
$result = $client->modifyLunaClient([
'Certificate' => '<string>', // REQUIRED
'ClientArn' => '<string>', // REQUIRED
]);
Parameter Details
Members
- Certificate
-
- Required: Yes
- Type: string
The new certificate for the client.
- ClientArn
-
- Required: Yes
- Type: string
The ARN of the client.
Result Syntax
[
'ClientArn' => '<string>',
]
Result Details
Members
- ClientArn
-
- Type: string
The ARN of the client.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
RemoveTagsFromResource
$result = $client->removeTagsFromResource([/* ... */]); $promise = $client->removeTagsFromResourceAsync([/* ... */]);
This is documentation for AWS CloudHSM Classic. For more information, see AWS CloudHSM Classic FAQs, the AWS CloudHSM Classic User Guide, and the AWS CloudHSM Classic API Reference.
For information about the current version of AWS CloudHSM, see AWS CloudHSM, the AWS CloudHSM User Guide, and the AWS CloudHSM API Reference.
Removes one or more tags from the specified AWS CloudHSM resource.
To remove a tag, specify only the tag key to remove (not the value). To overwrite the value for an existing tag, use AddTagsToResource.
Parameter Syntax
$result = $client->removeTagsFromResource([
'ResourceArn' => '<string>', // REQUIRED
'TagKeyList' => ['<string>', ...], // REQUIRED
]);
Parameter Details
Members
- ResourceArn
-
- Required: Yes
- Type: string
The Amazon Resource Name (ARN) of the AWS CloudHSM resource.
- TagKeyList
-
- Required: Yes
- Type: Array of strings
The tag key or keys to remove.
Specify only the tag key to remove (not the value). To overwrite the value for an existing tag, use AddTagsToResource.
Result Syntax
[
'Status' => '<string>',
]
Result Details
Members
- Status
-
- Required: Yes
- Type: string
The status of the operation.
Errors
-
CloudHsmServiceException:
Indicates that an exception occurred in the AWS CloudHSM service.
-
CloudHsmInternalException:
Indicates that an internal error occurred.
-
InvalidRequestException:
Indicates that one or more of the request parameters are not valid.
Shapes
CloudHsmInternalException
Description
Indicates that an internal error occurred.
Members
CloudHsmServiceException
Description
Indicates that an exception occurred in the AWS CloudHSM service.
Members
- message
-
- Type: string
Additional information about the error.
- retryable
-
- Type: boolean
Indicates if the action can be retried.
InvalidRequestException
Description
Indicates that one or more of the request parameters are not valid.
Members
Tag
Description
A key-value pair that identifies or specifies metadata about an AWS CloudHSM resource.
Members
- Key
-
- Required: Yes
- Type: string
The key of the tag.
- Value
-
- Required: Yes
- Type: string
The value of the tag.