Skip to content

Backing Up PKI Server

Jump to bottom
Endi S. Dewata edited this page Jan 26, 2023 · 3 revisions

Overview

This page describes the process to back up a PKI server which includes:

  • configuration files

  • log files

  • certificates and the keys in internal NSS token

Note: Data stored in the DS or HSM will need to be backed up separately if necessary. Please refer to the DS and HSM documentation.

Backing Up PKI Server

First, make sure the server is stopped:

$ pki-server stop --wait

Then execute the following command:

$ tar czvf pki-tomcat.tar.gz \
    -C / \
    etc/pki/pki-tomcat \
    etc/sysconfig/pki-tomcat \
    etc/sysconfig/pki/tomcat/pki-tomcat \
    etc/systemd/system/pki-tomcatd.target.wants/pki-tomcatd@pki-tomcat.service \
    var/lib/pki/pki-tomcat \
    var/log/pki/pki-tomcat

Finally, restart the server.

$ pki-server start --wait

Store the pki-tomcat.tar.gz in a safe location.

See Also

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
Clone this wiki locally