RESTORE/ROLLBACK, IF REQUIRED

Assuming that a backup was created for the database, keystores and openLDAP directory, a restore script can be executed to rollback to the previous state. Rollback for the keystores and database can be executed as "strongkey" user. However, restoring LDAP requires "root" access.

Restore - database and keystores

Follow the steps below to rollback the database and the keystores: 

1. Login as "strongkey" user and open a terminal 

2. Unzip the add-domain-v4.x.zip file to the current directory, if it already doesn't exist:

   shell> unzip add-domain-v4.x.zip -d .

3. Edit the restore-backup script using a preferred text editor

   shell> vi restore-backup.sh

   The script takes the following arguments.

   shell> restore-backup.sh <path-to-backup-directory-name>
   

   It also includes configurable values. Please change the passwords if not using the default ones.

4. Execute the restore-backup.sh script as follows:

   shell> ./restore-backup.sh /usr/local/strongkey/skfsbackups/add-domain-<did>-<date>
   

   The script will restore the keystores and database.

Restore  -  openLDAP

Follow the steps to rollback are as follows: 

1. Login as "root" user and open a terminal 

2. Go to the folder where the add-domain-v4.x.zip file was extracted:

   shell> cd /usr/local/strongkey/add-domain-v4.x

3. Edit the restore-LDAP script using a preferred text editor

   shell> vi restore-LDAP.sh

   The installation script contains configurable values. Please change the passwords if not using the default ones.

4. The script takes the following arguments:

   shell> restore-LDAP.sh <path-to-backup-directory-name>
   

5. Execute the restore-backup.sh script as follows:

   shell> ./restore-LDAP.sh /usr/local/strongkey/skfsbackups/add-domain-<did>-<date>
   

   The script will restore the openLDAP Directory.