On Wed, Jan 25, 2012 at 11:10, Casper Gielen <[email protected]> wrote: > Op 24-01-12 22:34, Bas van den Dikkenberg schreef: >> Can some one telme what is the correct procedure to reinstall opendnssec >> on a new server with losing keys, and have to do key rol overs? > > I've never done so, but I think that just copying everything over should > do the trick.
Well, if you have softhsm you need to export/import if you the new architecture has different number of bits. See the recent discussion on the list... > If you have a (hardware) HSM you'll obviously need to move > that as well. > > - move the HSM For softhsm also copy: /etc/softhsm /var/lib/softhsm (adjust paths according to your setup) > - move the data (/var/lib/opendnssec/) (could also be MySQL). > - move the configuration (/etc/opendnssec/) Just tested that myself and with exception of the integer-width glitch, it worked like a charm. O. -- Ondřej Surý <[email protected]> _______________________________________________ Opendnssec-user mailing list [email protected] https://lists.opendnssec.org/mailman/listinfo/opendnssec-user
