Backup and restore plans for the Puppet Enterprise CA. This utilises the puppet_backup tool. This plan has scope set to only CERTS, and will backup CA and SSL certificates. The backup plan will create a tarball of the CA and store it by default in the /tmp directory. The restore plan will restore the CA from the tarball at the path you provide.
There can be some downtime associated with the restore process. Restore will stop PE services, restore the CA, and then start the PE services. This can take a few minutes.
peadm backup_ca target=primary.example.comBackup will output the path to a timestamped folder containing the backup file. The backup file will be named backup_ca.tgz. At this stage the backup file can be copied to a safe location.
Optionaly "output_directory" can be specified to change the location of the backup file.
peadm::backup_ca target=primary.example.com output_directory=/custompathpeadm::restore_ca target=primary2.example.com path=/tmp/backup_ca.tgz file_path=/tmp/backup_ca.tgzRestore will stop PE services, restore the CA, and then start the PE services. This can take a few minutes.
Optionaly "recovery_directory" can be specified to change the temporary location where the backup file will be unzipped.
peadm::restore_ca target=primary2.example.com path=/tmp/backup_ca.tgz file_path=/tmp/backup_ca.tgz recovery_directory=/custompath