A.5 Backing Up and Restoring the ZENworks Certificate Authority

When you install ZENworks Configuration Management for the first time you are prompted to either create an internal Certificate Authority (CA) or provide the appropriate certificate information for an external CA. If you are using the built-in CA, it is important to keep in mind that the CA can be backed up and restored if you require this as part of a set of troubleshooting procedures.

To back up the CA files on the Primary Server that is configured to be the ZENworks internal CA:

  1. At the command prompt of the ZENworks Server, enter the following command:

    zman certificate-authority-export (certificate-authority-export/cae) [options] (file path)
    

    This command exports the key-pair credentials of the zone certificate authority to a file.

  2. Enter the username and password of the administrator of the Management Zone.

  3. Enter a passphrase for the file encryption.

    The passphrase is used in the encryption of the backed-up file.

To restore the CA files on the Primary Server that is configured to be the ZENworks internal CA:

  1. At the command prompt of the ZENworks Server, enter the following zman command:

    zman certificate-authority-import (certificate-authority-import/cai) (file path) 
    

    This command imports the key-pair credentials of the zone certificate authority from a file.

  2. Enter the username and password of the administrator of the Management Zone.

  3. Enter the file encryption passphrase you specified when you backed up the Certificate Authority files