Log into the the old server on alpha.example.com as the Certificate System user, and run PasswordCache to extract the contents from the password cache.

cd /usr/netscape/servers/cert-drm/config

/usr/netscape/servers/bin/cert/tools/PasswordCache /usr/netscape/servers 
-d /usr/netscape/servers/alias -P cert-drm-alpha- 

list
cert/key prefix = cert-drm-alpha-
path = /usr/netscape/servers/alias
about to read password cache

----- Password Cache Content -----
internal : emerald
Internal LDAP Database : emerald

Write down this information.

Since the 6.1 Certificate System uses password.conf start the DRM instance automatically on alpha.example.com, copy the password.conf file to server.example.com, overwriting any existing password.conf file:

cp /usr/netscape/servers/cert-drm/config/password.conf 
/var/lib/rhpki-kra/conf/password.conf

Log into the new server hosting server.example.com as the Certificate System user, and open the Certificate System conf/ directory.

cd /var/lib/rhpki-kra/conf/

Log in as root, and set the file user and group to the new server Certificate System user and group.

su

chown pkiuser:pkiuser password.conf

Log out as root. As the Certificate System user, change the permissions on the file.

chmod 00600 password.conf

Copy the extracted passwords from the 6.1 pwdcache.db database into the 7.3 password.conf file.