Recovering Archived Key
Endi S. Dewata edited this page Mar 19, 2024
·
2 revisions
In order to recover an archived key, a request needs to be submitted and approved first before the key can be retrieved from KRA.
To submit a recovery request:
$ pki -n caadmin kra-key-recover --keyID 1 -------------------------------- Key Recovery Request Information -------------------------------- Request ID: 0x15 Key ID: 0x1 Type: securityDataRecovery Status: svc_pending
Alternatively, the request can be prepared in a file using the recovery template, for example:
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<KeyRecoveryRequest>
<Attributes>
<Attribute name="keyId">1</Attribute>
</Attributes>
<ClassName>com.netscape.certsrv.key.KeyRecoveryRequest</ClassName>
</KeyRecoveryRequest>
Then submit the request with the following command:
$ pki -n caadmin kra-key-recover --input recoverKey.xml
|
Tip
|
To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis. |