HP-UX IPSec version A.02.01 Administrator's Guide
Migrating from Previous Versions of HP-UX IPSec
Pre-Installation Migration Instructions
Appendix C252
To view an HP-UX IPSec log file, use the command
ipsec_report -audit
audit_file_name
[-file
output_file_name
]
By default, HP-UX IPSec log files are located in the /var/adm/ipsec
directory. The log file name format is audit
date_information
.log.
Migrating from Versions Prior to A.01.03
If you are updating to HP-UX IPSec version A.02.01 from a version
released prior to A.01.03 (such as version A.01.01 or A.01.02) and want to
re-use your configuration files, you must use the following procedure to
first update to HP-UX IPSec version A.01.05, then update to version
A.02.01:
1. Verify that HP-UX IPSec is already configured with a valid IPsec
password and configuration file. To do this, use the ipsec_admin
-start command to start HP-UX IPSec. After you have verified
HP-UX IPSec, stop it using the ipsec_admin -stop command.
2. Check the automatic boot-up setting in the ipsec_mgr GUI under
the Options menu. If it is enabled, deselect Boot-up Options.
3. Install HP-UX IPSec version A.01.05.
If you need a copy of the HP-UX IPSec A.01.05 product, contact your
HP representative.
4. Manually start HP-UX IPSec using the ipsec_admin -start
command. This creates data needed to migrate to HP-UX IPSec
version A.02.00.
5. Stop HP-UX IPSec using the ipsec_admin -stop command.
6. Install HP-UX IPSec version A.02.01.
7. Migrate your configuration file, as described in “Post-Installation
Migration Instructions” on page 254.
Not Re-using Configuration Files
If you do not want to re-use existing configuration files, you can update
directly to HP-UX version A.02.01. Use the swremove utility to remove
the existing version of HP-UX IPSec, then install HP-UX IPSec version
A.02.01.
If you had a certificate issued for the system, contact your PKI
administrator and have the original certificate for the system revoked.