Renewing a file-based external certificate

Use this section to renew a file-based external certificate.

While you replace the certificate, private key, and passphrase files one by one with all the services up, communication may fail because of mismatch in the certificate - private key pair. To avoid any communication failure, create copies of the files that NetBackup can use if there is a mismatch in the files.

To renew a file-based external certificate

Make a copy of the certificate file and rename it with .old extension.
For example, if the certificate file name is cert.pem, rename it as cert.pem.old.
Make a copy of the private key file and rename it with .old extension.
Carry out the following step if the certificate's private key is encrypted.
Make a copy of the passphrase file and rename it with .old extension.
Replace the original certificate, private key, and passphrase files with the renewed certificate, private key, and passphrase files.
Restart the NetBackup services.
Ensure that the host communication is successful with the renewed certificate and then delete the old certificate files.

Renewing a file-based external certificate

Feedback

Feedback