Synchronize all smkeydatabase instances before beginning the migration to a new version.
Note: Use the smkeytool utility to synchronize the smkeydatabases and resolve all data inconsistencies between smkeydatabase instances. For more information about the smkeytool utility, see the Policy Server Administration Guide.
Previous versions of CA SiteMinder® used a local smkeydatabase to store certificate data. Each Policy Server required its own smkeydatabase. For version 12.51, a centralized certificate data store replaces the local smkeydatabases.
As part of a Policy Server upgrade, the installer automatically backs up the local smkeydatabase and tries to migrate all content to the certificate data store. This process includes a comparison of both stores before starting the migration.
Important! If the migration of the smkeydatabase fails, do not return the Policy Server to the environment. Returning the Policy Server after a failed migration causes all transactions that require the certificate data to fail.
Use the following guidelines to identify and resolve data consistencies among your smkeydatabases:
Example: A certificate‑authority certificate consistently references certificate revocation lists in an LDAP directory service.
Important! After you resolve all data inconsistencies, we recommended that you do not modify a smkeydatabase until all migrations are complete.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|