Table of Contents
Advertisement
Chapter 5. Step 4: Migrating Security Databases
old_server_root/bin/cert/tools/certutil -U -d .
d. Use the Certificate System 7.x
entries from the security databases and save each base-64 output to a separate file.
old_server_root/bin/cert/tools/certutil -L
-n "old_HSM_slot_name:caSigningCert cert-old_TKS_instance"
-d . -h old_HSM_token_name -a > caSigningCert.b64
old_server_root/bin/cert/tools/certutil -L
-n "old_HSM_slot_name:tksTransportCert cert-old_TKS_instance"
-d . -h old_HSM_token_name -a > tksTransportCert.b64
e. Copy the key data from the 7.x server to the 7.3 server.
cp old_server_root/alias/caSigningCert.b64
/var/lib/instance_ID/alias/caSigningCert.b64
cp old_server_root/alias/tksTransportCert.b64
/var/lib/instance_ID/alias/tksTransportCert.b64
7. Log into the new server as the Certificate System user, and open the Certificate System
directory.
alias/
cd /var/lib/instance_ID/alias/
8. Log in as
.
root
9. Set the file user and group to the Certificate System user and group.
# chown user:group ServerCert.p12
# chown user:group caSigningCert.b64
# chown user:group tksTransportCert.b64
10. L og out as
. As the Certificate System user, change the permissions on the files.
root
chmod 00600 ServerCert.p12
chmod 00600 caSigningCert.b64
chmod 00600 tksTransportCert.b64
60
tool to extract the public key of the following
certutil
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
Related Products for Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE
- Red Hat APPLICATION STACK 2.4 RELEASE
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE and is the answer not in the manual?
Questions and answers