Restoring PKI Server - dogtagpki/pki GitHub Wiki

Overview

This page describes the process to restore a PKI server which includes.

  • configuration files

  • log files

  • certificates and the keys in internal NSS token

Note: Data stored in the DS or HSM will need to be restored separately if necessary. Please refer to the DS and HSM documentation.

Restoring PKI Server

To restore PKI server from a backup file (e.g. pki-tomcat.tar.gz), execute the following command:

$ tar xzvf pki-tomcat.tar.gz -C /

Then start the server:

$ pki-server start --wait

Current Limitation

  • The server should be restored on a machine with the same hostname since the hostname of the original machine might be stored in various files, certificates, and database records.

  • The server should be restored on a machine with the same PKI version since the server files and database format could change in a different PKI version.

See Also

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
⚠️ **GitHub.com Fallback** ⚠️