Previous Topic: Generate Customized Master CertificatesNext Topic: Distribute the Master Certificates

Network Integration GuideDecoding SSL CommunicationsHow to Set up SSL DecodeBack up the Private Key

Back up the Private Key

The private key of the NBA’s master certificate (used by clients to verify each SSL connection) is stored on disk on the NBA appliance. You must copy the private key for backup purposes. You must also copy the private key if the same certificate details are needed on multiple NBA appliances in a failover or load sharing configuration.

Note: Backing up the /config folder only protects the NBA configuration settings. It does not back up the private key.

To copy the private key

  1. Log on as root to the NBA console using SSH.
  2. Go to the private key directory. To do this, run this command: 
    cd /home/nba/bin/private

    This folder contains the following files:

    nbaroot.crt

    Public key in base64 X509 format

    root.pem

    Private key

    nbarevoked.crt

    Public key in base64 X509 format

    revoked.pem

    Private key

  3. Copy the complete /private folder, including these files, from the configured CA DataMinder Network appliance to the unconfigured appliances.
  4. Copy the complete /home/smb/config folder, including all subfolders and files, from the configured CA DataMinder Network appliance to the unconfigured appliances in order to fully replicate your configuration.
  5. Reboot the unconfigured appliances.