[Opendnssec-user] no softhsm whining
Randy Bush
randy at psg.com
Mon Jun 9 17:27:52 UTC 2014
>>> i realized that i have not seen softhsm telling me i need to
>>> sqlite3 /usr/local/var/softhsm/slot0.db ".backup `date '+%y%m%d'`.softhsm-copy.db"
>>> ods-ksmutil backup prepare
>>> ods-ksmutil backup commit
>>> for a month or two. how do i diagnose why and what i should do about
>>> it?
>> SoftHSM would not be the one telling you to do a backup. That would be the
>> Enforcer.
>
> sorry
>
>> It will not progress with the key rollover until the new key has been
>> backed up. Have you flagged the repository with RequireBackup (see
>> conf.xml)?
>
> <blush> how embarrassing. it seems to have been commented out a month
> ago. thanks for the clue bat.
all ds are seen. repository is flagged. i am still not asked to back
keys up.
<Repository name="SoftHSM">
<Module>/usr/local/lib/softhsm/libsofthsm.so</Module>
<TokenLabel>opendnssec</TokenLabel>
<PIN>VibogNond1</PIN>
<RequireBackup/>
<SkipPublicKey/>
</Repository>
randy
More information about the Opendnssec-user
mailing list