Documentation
Rate This Document
Findability
Accuracy
Completeness
Readability
SubmitClose

Updating the KMC Key of the TLS Certificate

For security purposes, you are advised to periodically update the KMC key.

You can update the KMC key when needed.

  1. Go to the certificate script directory.
    cd /opt/certtool/certificate
  2. Update the KMC key of the TLS certificate.
    sh cert_manager.sh update_key

    To ensure that the key is updated successfully, you can check whether the content of the /opt/gcache/securec/Certs/keypass.key file has been updated.

    After updating the key, update the key in the ZooKeeper service configuration file zoo.cfg by following instructions provided in Configuring the ZooKeeper TLS. Then restart the ZooKeeper service.

    Then, restart the CCM and Global Cache services by following instructions provided in section 10.2.

Parent topic: Configuring TLS