Federation Manager Guide › Restore a Federation Manager Configuration › How To Restore a System to a Previous Configuration › Revert to a Backed-up Configuration

Revert to a Backed-up Configuration

If you experience any problems with an existing Federation Manager configuration, you can revert to a previously backed up configuration on the same system.

To restore a configuration, use the XPSImport tool shipped with Federation Manager to import an XML file.

Important! Follow the import steps exactly as outlined. Do not access the Certs & Keys tab in the Federation Manager UI until the procedure is complete.

To revert to a backed-up Federation Manager configuration

1. Establish a new database instance for Federation Manager data.

   Important! Do not use an existing database for this step. The import fails if you do.

2. Run the Federation Manager Configuration wizard, specifying the new database instance when prompted.

   Use the same settings for this new configuration that were used for the original configuration. These settings include:

   • Deployment Mode
   • Port numbers
   • Virtual Host Name
   • SiteMinder Connector
3. Stop Federation Manager services according to your platform.

   Windows

   Use the Federation Manager stop shortcut. If you logged in as a network user and not a local administrator, right-click the shortcut and select Run as administrator.

   Select Start, All Programs, CA, FederationManager, Stop services.

   UNIX

   1. Open a command window.
   2. Run the following script:

      federation_mgr_home/fedmanager.sh stop

      When you run the fedmanager.sh script, it sources the Federation Manager environment script, ca_federation_env.ksh.

      Note: Do not stop and start the services as the root user.

4. Restore the key database by doing the following:
   1. Rename or delete the directory federation_manager_home/siteminder/smkeydatabase
   2. Copy the previously backed-up database to federation_manager_home/siteminder directory.
5. Restore all other configuration data using the XPSImport command, as follows:

   XPSImport export_file_name -passphrase passphrase

   export_file_name

   Names the XML file that resulted from the export of the original configuration. The filename should end with the extension .xml.

   passphrase

   Specifies the passphrase required to decrypt sensitive data. It must be at least eight characters and must contain at least one digit, one upper case and one lower case letter. If the passphrase contains a space, then it must be enclosed in quotes.

6. Re-run the Federation Manager Configuration wizard.

   Use the same settings for this new configuration that were used for the original configuration. These settings include:

   • Deployment Mode
   • Port numbers
   • Virtual Host Name
   • SiteMinder Connector
7. Log back in to the Federation Manager UI.
8. Select the Federation tab and click Partnerships.

   The View Federation Partnerships window opens.

9. Select Activate from the Action menu next to each deactivated partnership in the Federation Partnership list. This re-activates all the partnerships.
10. (Optional) If the SiteMinder Connector was enabled in the original configuration, reestablish the Connector by doing the following:
    1. Click the Infrastructure tab and select Deployment Settings.
    2. Reconfigure the SiteMinder Connector settings using the same values that were used by the original configuration.
    3. Click Register Host to reregister Federation Manager with the SiteMinder Policy Server.

The Federation Manager configuration is restored to its original state before you backed it up.