Table of Contents
Advertisement
Chapter 5. Step 4: Migrating Security Databases
-d . -h old_HSM_token_name -a > caSigningCert.b64
old_server_root/bin/cert/tools/certutil -L
-n "old_HSM_slot_name:tksTransportCert cert-old_TKS_instance"
-d . -h old_HSM_token_name -a > tksTransportCert.b64
e. Copy the key data from the 7.x server to the 7.3 server.
cp old_server_root/alias/caSigningCert.b64
/var/lib/instance_ID/alias/caSigningCert.b64
cp old_server_root/alias/tksTransportCert.b64
/var/lib/instance_ID/alias/tksTransportCert.b64
7. Log into the new server as the Certificate System user, and open the Certificate System
directory.
alias/
cd /var/lib/instance_ID/alias/
8. Log in as
.
root
9. Set the file user and group to the Certificate System user and group.
# chown user:group ServerCert.p12
# chown user:group caSigningCert.b64
# chown user:group tksTransportCert.b64
10. L og out as
. As the Certificate System user, change the permissions on the files.
root
chmod 00600 ServerCert.p12
chmod 00600 caSigningCert.b64
chmod 00600 tksTransportCert.b64
11. I mport the public/private key pair from the PKCS #12 file into the new security databases.
pk12util -i ServerCert.p12 -d .
Enter Password or Pin for "NSS Certificate DB":********
Enter password for PKCS12 file: ********
pk12util: PKCS12 IMPORT SUCCESSFUL
12. O ptionally, delete the PKCS #12 file:
56
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
Related Products for Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE
- Red Hat APPLICATION STACK 2.4 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE and is the answer not in the manual?
Questions and answers