When necessary, you can use a backup file to restore your Security Compliance Management installation to new infrastructure.
Before you begin
Ensure you are running a version of the module that matches the version of the
backup being used for the migration and that all targets and the resolvable hostname
have been updated in Hiera to reference the new target system. Update your
inventory file with the new target and ensure an unzip utility is installed on the new
target system.
To restore your Security Compliance Management installation to a new
server:
-
Install Security Compliance Management on the new system. From the root
of your Security Compliance Management
Puppet Bolt project run
complyadm::install and select yes
to use the existing Hiera data.
-
Copy the backup tarball you wish to restore to
/var/lib/puppetlabs/comply/backups on the new system.
This directory may need to be created.
-
Restore the backup on the new system. From the root of your Security Compliance Management
Puppet Bolt project run:
bolt plan run complyadm::restore backup=<backup tarball name>
Wait for the restore to finish before moving to the next step.
-
Configure the installation with updated TLS and MTLS certs for the new system
by running the configure plan and selecting the relevant configuration items.
From the root of your Security Compliance Management
Puppet Bolt project run:
bolt plan run complyadm::configure