[knot-dns-users] Re: restore, key copy failed (already exists)

29 Lis 2025

...
  On 29 Nov 2025, at 17:47, Daniel Salzman
&lt;daniel.salzman(a)nic.cz&gt; wrote:
 To be clear, if you use a PKCS #11 keystore, the zone backup doesn't and can't
back up the
 stored private keys. It only backs up metadata stored in the KASP DB. Therefore, you must
also
 synchronize contents of the HSM. In the case of SoftHSM, you just copy the tokens
directory.

Sorry for the misunderstanding, I incorrectly used softhsm to mean “not HSM”.
We *are* using the PEM keystore.
.einar

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

[knot-dns-users] Re: restore, key copy failed (already exists)