15.3.5. Step 5: Migrating Password Cache Data

15.3.5. Step 5: Migrating Password Cache Data

Migrate the password cache data from the 6.1 pwcache.db and password.conf files to the 7.3 password.conf file by doing the following:

NOTE

For more information on extracting and migrating the password cache data see Section 8.3, “Migrating 6.0, 6.1, 6.2, 7.0, and 7.1 Password Cache Data”.

  1. Log into alpha.example.com as the Certificate System user, and use the PasswordCache tool to extract the passwords from the old password cache. 

    cd /usr/netscape/servers/cert-ocsp/config

/usr/netscape/servers/bin/cert/tools/PasswordCache sapphire 
-d /usr/netscape/servers/alias -P cert-ocsp-alpha-

list
cert/key prefix = cert-ocsp-alpha-
path = /usr/netscape/servers/alias
about to read password cache
----- Password Cache Content -----
internal : sapphire
Internal LDAP Database : sapphire

  2. Write down this information.

  3. Since this example used a password.conf file to start the OCSP instance automatically on the alpha.example.com machine, copy the password.conf file to server.example.com, overwriting any existingpassword.conf file: 

    cp /usr/netscape/servers/cert-ocsp/config/password.conf 
/var/lib/rhpki-ocsp/conf/password.conf

  4. Log into server.example.com as the Certificate System user, and open the Certificate System conf/ directory. 

    cd /var/lib/rhpki-ocsp/conf/

  5. Log in as root, and set the file user and group to the new server Certificate System user and group. 

    su

chown pkiuser:pkiuser password.conf

  6. Log out as root. As the Certificate System user, change the permissions on the file. 

    chmod 00600 password.conf

  7. Copy the data extracted from the 6.1 pwdcache.db database into the 7.3 password.conf file.