Migrating PKI Database - dogtagpki/freeipa GitHub Wiki

Overview

Warning	This page is still under construction.

Exporting CA Database

$ ldapsearch \
    -x \
    -D "cn=Directory Manager" \
    -w Secret.123 \
    -b "o=ipaca" \
    -LLL \
    -o ldif_wrap=no \
    > ca.ldif

Replacing CA Database Base DN

$ sed \
    -i \
    -e 's/o=ipaca/dc=ca,dc=pki,dc=example,dc=com/' \
    -e 's/^objectClass: organization$/objectClass: domain/' \
    -e 's/^o: ipaca$/dc: ca/' \
    ca.ldif

Importing CA Database

$ ldapadd \
    -x \
    -D "cn=Directory Manager" \
    -w Secret.123 \
    -f ca.ldif

⚠️ GitHub.com Fallback ⚠️