Manual PrivX-Server Backup and Restore
Manual Backup
To manually backup a PrivX server, create a backup by running:
# /opt/privx/scripts/backup.sh
This will creates backup directory to:
/var/backups/privx/hostname_date
Where hostname is the name of the host and date is backup timestamp. A working example of a backup-directory path would be:
/var/backups/privx/privx_2020-12-31-2350
Please note, by default PrivX servers create daily backups. Automatic backups are created under:
/var/backups/privx/
If you have configured the server to store its certificates in non-default locations, or to use a non-default local database name. Check and adjust the Default options in backup.sh before running it.
By default backup.sh backs up:
- PrivX keyvault at /opt/privx/keyvault
- PrivX configurations under /opt/privx/etc
- SSL certificate files located under /etc/pki/CA and /etc/nginx/ssl
- PrivX-CA trust anchor: files matching privx-*.pem under /etc/pki/ca-trust/course/anchors/
- Local PostgreSQL database named privx (only if using local databases).
Manual Restore
To manually restore a PrivX server from a backup, reinstall PrivX and apply the backup files as follows:
- Uninstall PrivX server software according to the instructions in the Administrator Manual.
- Install the PrivX version from which your backups were taken.
- Stop all PrivX services to prevent system changes during restore:
# systemctl stop privx
- Restore the PrivX local data by running (replace /path/to/backup with the path of the backup directory):
# /opt/privx/scripts/restore.sh /path/to/backup
- On all the PrivX servers, run the post-installation script to apply the restored configurations, and to restart the PrivX service:
# /opt/privx/scripts/postinstall.sh
Updated about 3 years ago