Regenerating symmetric keys for System Manager

Last Updated : Nov 29, 2021 |

About this task

Use this procedure to execute the utility to regenerate data protection keys. System Manager administrator must execute the utility manually when one or more of the following conditions are met:

Commercial grade hardening is enabled in System Manager.
Sensitive data, such as user or communication profile passwords, are suspected to be compromised.
The older data encryption keys must be replaced.

Before you begin

Create a data backup of System Manager before running this utility.
On Geographic Redundancy-enabled System Manager, disable replication before executing this utility.

For more information, see Disabling the Geographic Redundancy replication.
Stop the System Manager Application server.

Note:

The utility takes longer when a large amount of data is present on System Manager. Therefore, Avaya recommends that you run this utility during the System Manager maintenance window.

Procedure

Log in to the System Manager command line interface.
Type cd $MGMT_HOME/securestore, and press Enter.
Type sudo $MGMT_HOME/securestore/migrateORRegenSecureStores.sh 3600, and press Enter.
At the prompt, type one of the following and press Enter:
- 1 to run the utility for all domains
- 2 to run the utility for specific domains
- 3 to exit the utility
To run the utility for specific domains, enter the domain name and press Enter.

The system executes the utility as a background process. Thus, if the SSH session is terminated, the utility execution is not affected.
To view the result, type vim $AVAYA_LOG/migrateOrRegenSecureStore.log and press Enter.

Send Feedback

AVAYA DOCUMENTATION CENTER

No results found