Basically, when we execute a generate key command such as A0
then we receive a key-under-lmk
for future use. What if we have multiple HSMs in a high availability configuration? How would we make sure that all keys-under-LMK mean the same thing to all HSM instances?
The documentation I have doesn't cover this and I didn't find anything online about that particular model.