Copying the key from the source to the target server
You must copy the key from the source server to the target server before you migrate data using the configcopy tool.
About this task
|
As of PingFederate 10.2, the |
To copy the key from the source to the target server, you copy the needed keys from the pf.jwk file on the source server and append it to the last key in the pf.jwk file on the target server, and then restart that target server. This step only needs to be completed before the first migration.
Steps
-
In your PingFederate installation on the source server, open the
pf.jwkfile in the<pf_install>/pingfederate/server/default/datadirectory. -
Copy the key in the file.
Make sure you copy the entire key JSON message, as in the following example.
{"keys":\{"kty":"oct","kid":"j0PUEdAb95","k":"AGi8Lg_ewdl-_30Cx83kDMQE9oNlhgJSa_Pc4I8JTU8"}]} -
In your PingFederate installation on the target sever, open the
pf.jwkfile. -
Insert a comma at the end of the last key in the file and append the source key.
For example, if the
pf.jwkon the target server reads as follows.{"keys":[{"kty":"oct","kid":"wER9zEpaPe","k":"i0HQr9JmsqjAX4o_BQU1qGJzoLQI-nmwp8u3GyHzTB8"}]}Insert the comma and the source key as shown.
{"keys":\{"kty":"oct","kid":"j0PUEdAb95","k":"AGi8Lg_ewdl-_30Cx83kDMQE9oNlhgJSa_Pc4I8JTU8"}]}This is a well-formed JSON document in one line.
-
Save the
pf.jwkfile and restart the target server. -
If applicable, repeat the steps above for each target PingFederate server.