Policy Server Administration Guide › Configuring and Managing Encryption Keys › Reset the Policy Store Encryption Key
Reset the Policy Store Encryption Key
To reset the policy store Encryption Key
- Export your existing policy store content in clear text.
- Run smldapsetup remove to clear the policy store content and SOA Security Manager schema.
- Run "smreg -key new_encryption_key" to reset the Encryption Key.
- Reboot the machine.
- Load the Policy Server Management Console and retype the Admin password for the Directory Server.
- Open a command prompt.
- Run "smldapsetup ldgen -fany_filename_to_store_new_schema -v".
The LDAP instance is correctly identified. - Run "smldapsetup ldmod -fprevious_filename -v"
LDAP is modified with the schema file. - Run "smreg -su SOA Security Manager_admin_password" to reset SOA Security Manager Administrator password.
- Run "smobjimport -ismpolicy.smdif file -dsiteminder -wpassword -v" to import SOA Security Manager policy store base contents to LDAP.
- Run "smobjimport -ithe_original_exported_policy_export_file.smdif> -dsiteminder -wpassword -v" to restore the original content of policy store.
Important! If you are running a SOA Security Manager utility or executable on Windows Server 2008, be sure to open the command–line window with Administrator permissions, even if you are logged into the system as an Administrator. For more information, see the release notes for your SOA Security Manager component.
