How do I back up the NSP Kubernetes secrets?
Steps
Perform the following steps in each data center to back up the Kubernetes secrets.
1 |
Open a terminal session to the NSP deployer VM and log in as the root or NSP admin user. |
2 |
Log in as the root or NSP admin user. |
3 |
Enter the following on the NSP deployer VM: # cd /opt/nsp/NSP-CN-DEP-release-ID/bin ↵ |
4 |
Enter the following: # ./nspdeployerctl secret -o backup_file backup ↵ where backup_file is the absolute path and name of the backup file to create As the secrets are backed up, messages like the following are displayed for each Kubernetes namespace: Backing up secrets to /opt/backupfile... Including secret namespace:ca-key-pair-external Including secret namespace:ca-key-pair-internal Including secret namespace:nsp-tls-store-pass When the backup is complete, the following prompt is displayed: Please provide an encryption password for backup_file enter aes-256-ctr encryption password: |
5 |
Enter a password. The following prompt is displayed: Verifying - enter aes-256-ctr encryption password: |
6 |
Re-enter the password. The backup file is encrypted using the password. |
7 |
Record the password for use when restoring the backup. |
8 |
Record the name of the data center associated with the backup. |
9 |
Copy backup_file to a backup directory. End of steps |