SECURING
Follow these steps move a non-clustered server and credential store to an existing cluster and credential store.
About this task
In this procedure, original server refers to the server you are moving to the cluster and target server refers to one server in the cluster.
Procedure
1. From the original server, use the following server console command to export the data in its credential store to a new database in the local data directory:
where
keymgmt export credstore credstorecopy.nsf hubserver/renovations
3. From the original server, rename the credstore.nsf file. For example, rename it to credstore_orig.nsf
4. Change the Server document of the original server to specify the name of the cluster and then restart the server.
5. Replicate credstore.nsf from the target server to the original server.
6. From the target server, export the named encryption key in the server ID file and save it to a key file in the program directory:
where <nekname> is the key name, <nekname>.key is the name of the key file to create, and<password> is a password for the key file.
For example:
keymgmt export nek credstorekey credstorekey.key passw0rd
Verify that you see a message similar to the following one indicating that the export was successful:
5558:0006-4A64] 06/12/2020 09:07:42.69 AM NEK > NEK credstorekey - Fingerprint A8C5 9018 C714 3F05 E574 93D9 5E70 005A 5371 4A71[5558:0006-4A64] NEK credstorekey exported successfully
8. From the original server, import the named encryption key in the key file into the server ID file:
where <nekname>.key is the name of the key file and<password> is the password for the key file. For example:
keymgmt import nek overwrite credstorekey.key passw0rd
where <database> is the name of the database with the exported data. For example:
keymgmt import credstore credstorecopy.nsf