When you run the certificate generation scripts, GenerateRootCert.bat and GenerateKeyStore.bat, three subfolders are created: \tmp, \persist, and \output.
For example, if the scripts are stored in an \AdvancedEncryption folder, they will create subfolders such as \AdvancedEncryption\persist.
This holds temporary files while the script is running. When the script completes, this subfolder should be empty. If it is not, you can safely delete its contents.
This subfolder is critical. It contains files needed to update the certificates and Key Store at a later date. It contains: a script log file; a text file with the serial number of the most recent enterprise certificate; the self-signed root certificate containing its public key; the root key pair, encrypted; and the enterprise certificate.
The file containing the encrypted root key pair must be kept secure because it is needed to sign every enterprise certificate generated. If this critical file is lost, the Key Store will need to be regenerated and redeployed to every machine in the CA DataMinder enterprise.
Important! Never delete any files in this folder!
This subfolder contains keystore.dat and revocation.properties. Whenever you update your enterprise certificate after the initial CA DataMinder deployment, you will need to deploy these files to the \data folder on each CA DataMinder server and client machine using a secure software delivery mechanism.
Note: The \data folder holds all the configuration data and captured data used by your CA DataMinder enterprise. By default, when you install a CA DataMinder server or client machine this folder is added as a subfolder in the CA DataMinder installation folder. But you can rename it and locate it anywhere suitable on your network.
|
Copyright © 2014 CA.
All rights reserved.
|
|