Recovering Archived Key - dogtagpki/pki GitHub Wiki

Overview

In order to recover an archived key, a request needs to be submitted and approved first before the key can be retrieved from KRA.

Simplified Process

To submit a recovery request:

$ pki -n caadmin kra-key-recover --keyID 1
--------------------------------
Key Recovery Request Information
--------------------------------
  Request ID: 0x15
  Key ID: 0x1
  Type: securityDataRecovery
  Status: svc_pending

Manual Process

Alternatively, the request can be prepared in a file using the recovery template, for example:

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<KeyRecoveryRequest>
    <Attributes>
        <Attribute name="keyId">1</Attribute>
    </Attributes>
    <ClassName>com.netscape.certsrv.key.KeyRecoveryRequest</ClassName>
</KeyRecoveryRequest>

Then submit the request with the following command:

$ pki -n caadmin kra-key-recover --input recoverKey.xml

See Also

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
⚠️ **GitHub.com Fallback** ⚠️