Enabling and configuring full replication by using the graphical user interface

To enable replication, you need to configure settings on both master and clone servers.

Before you begin

Ensure that the master and clone servers have a secure communication:
  1. On the master server, complete these steps:
    1. Create TLS certificate. If a TLS server certificate already exists, you can skip this step.
    2. Export the private key of the TLS certificate. Run Key Export REST Service. For example:
      PUT https://master_server_host:port/SKLM/rest/v1/keys/export
      {"alias":"SKLMTLSCertificate","fileName":"c:/SKLMTLSCertificate","type":"privatekey", "password":"password"}
  2. Copy the exported private key file of the master server to the SKLM_DATA folder of the clone server.
  3. On the clone server, complete these steps:
    1. Import the private key file of the master server. Run Key Import REST Service. For example,
      POST https://clone_server_host:port/SKLM/rest/v1/keys/import
      {"alias":"SKLMTLSCertificate","fileName":"C:\Program Files\IBM\WebSphere\Liberty\products\sklm\data\SKLMTLSCertificate","type":"privatekey","usage":"SSLSERVER", "password":"password"}
    2. Log in to the graphical user interface and go to IBM Security Guardium Key Lifecycle Manager > Advanced Configuration > Server Certificates.
    3. On the Administer Server Certificates page, select the imported certificate and click Modify. Specify the certificate as the "in-use" certificate and click Modify Certificate.

Procedure

  • On the master server
    1. Log in to the graphical user interface.
    2. Click Administration > Replication.
    3. Select the Master role. A confirmation message is displayed. Click OK.
    4. Modify the basic and advanced configuration properties. See Modifying replication configuration for a master server.
      After you modify the properties, click OK. On the confirmation message, click OK.
    5. Click Start Replication Server. A confirmation message is displayed. Click Close.
      Replication is now configured on the master server. To view the replication status, see the Replication section on the Welcome page.
  • On the clone server
    1. Log in to the graphical user interface.
    2. Click Administration > Replication.
    3. Select the Clone role.
    4. Modify the basic and advanced configuration properties. See Modifying replication configuration for a clone server.
      After you modify the configuration properties, click OK. A confirmation message is displayed. Click OK.
    5. Click Start Replication Server and then click OK.
      Replication is now configured on the clone server. To view the replication status, see the Replication section on the Welcome page.
    6. Repeat these steps for every clone server that you want to configure.

Results

Replication is now configured on the master and clone servers. Data is replicated based on the configured schedule whenever a new object is created on the master server. To immediately replicate the data from the master server to the clone servers, use the Replication Now button on the master server.