...
Next, the signing certificate is deleted from security serverSecurity Server. This removes the certificate from Security Server configuration, but does not modify contents of HSM.
...
Next, signer process is restarted, e.g. with
servicesystemctl restart xroad-signer restart
After signed restart, the key and certificate appear under category Key type not specified.
...
After the certificate has been deleted, security server Security Server has only transient knowledge of the key and certificate type (signing). After restart, this transient information disappears.
Inconsistencies in displaying the keys and certificates can lead to unexpected behavior. Usually deleting a certificate from SIGN Key and Certificate category removes the certificate from security server Security Server configuration, but does not modify HSM contents. However, deleting the certificate in step 3 is possible, and will delete it from HSM.
...
| Page Properties | ||
|---|---|---|
| ||
|