Table of Contents
Advertisement
Chapter 5. Step 4: Migrating Security Databases
e. Copy the key information from the 7.x server to the 7.3 server.
cp old_server_root/alias/caSigningCert.b64
/var/lib/instance_ID/alias/caSigningCert.b64
4. Open the Certificate System
cd /var/lib/instance_ID/alias/
5. Log in as
.
root
6. Set the file user and group to the Certificate System user and group.
# chown user:group ServerCert.p12
# chown user:group kraStorageCert.p12
# chown user:group kraTransportCert.p12
# chown user:group caSigningCert.b64
7. Log out as
, and log back into the system as the Certificate System user.
root
8. Set the file permissions.
chmod 00600 ServerCert.p12
chmod 00600 kraStorageCert.p12
chmod 00600 kraTransportCert.p12
chmod 00600 caSigningCert.b64
9. Register the new HSM in the 7.3 token database.
modutil -nocertdb -dbdir . -add new_HSM_token_name -libfile
new_HSM_library_path/new_HSM_library
10. I dentify the new HSM slot name.
modutil -dbdir . -nocertdb -list
11. I mport the public/private key pairs of each entry from the PKCS #12 files into the new HSM.
34
directory.
/alias
Advertisement
Table of Contents
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
Related Products for Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE
- Red Hat APPLICATION STACK 2.4 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE and is the answer not in the manual?
Questions and answers