82 CHAPTER 5: MANAGING AUTHENTICATION AND DIRECTORY SERVICE DATABASES
To run the VCX Authentication and Directory server database restore
utility:
1Log in to the server hosting the Authentication and Directory database
backup file. The steps in this procedure assume the backup file is located
on another Authentication and Directory server. Log in using the cworks
account.
2Enter the following command to change to the directory where backup
files are located:
cd /opt/3com/VCX/vcxdata/db/export
3Enter the following secure copy command, using the password cworks,
to copy the vcxdata<site ID>backup.<version number>.tgz file generated
by the backup utility to the /opt/3com/VCX/vcxdata/db/import directory.
scp vcxdata<site ID>backup.*.tgz cworks@<IP address of
primary Authentication and Directory
server>:/opt/3com/VCX/vcxdata/db/import
If you are prompted to verify the authenticity of the host, enter y. This
permanently adds the IP address to the list of known hosts.
Repeat step 3 to copy the backup file to the secondary Authentication
and Directory server.
CAUTION: When you use the scp command to copy the database
backup files to the down server, you may see a warning message about a
“man in the middle” attack. This message indicates that the security key
that was associated with the down server has changed, and the running
server does not recognize the down server’s new security key. The change
to the security key is a normal consequence of the disk replacement
process.
To resolve this issue, locate the known_hosts file on the running server
(/opt/home/cworks/.ssh/known_hosts) and perform one of these
actions:
Edit the file, locate the line that contains the IP address of the down
server, and replace the old key with the new key.
Edit the file, locate the line that contains the IP address of the down
server and remove that line.
Delete the known_hosts file. If you use this method, the next time you
try to access any of the other VCX servers using commands such as