How do I back up the CLM Kubernetes secrets?

Steps

Perform the following steps in each data center to back up the Kubernetes secrets.

 

Log in as the root or CLM admin user on the CLM deployer host.


Open a console window.


Enter the following on the CLM deployer host:

cd /opt/nsp/NSP-CN-DEP-release-ID/bin ↵


Enter the following:

./nspdeployerctl secret -o backup_file backup ↵

where backup_file is the absolute path and name of the backup file to create

As the secrets are backed up, messages like the following are displayed for each Kubernetes namespace:

Backing up secrets to /opt/backupfile...

  Including secret namespace:ca-key-pair-external

  Including secret namespace:ca-key-pair-internal

  Including secret namespace:nsp-tls-store-pass

When the backup is complete, the following prompt is displayed:

Please provide an encryption password for backup_file

enter aes-256-ctr encryption password:


Enter a password.

The following prompt is displayed:

Verifying - enter aes-256-ctr encryption password:


Re-enter the password.

The backup file is encrypted using the password.


Record the password for use when restoring the backup.


Record the name of the data center associated with the backup.


Copy backup_file to a backup directory.

End of steps