To restore a LOCAL key that was deleted, create a new LOCAL key with the same keyname and value as the deleted key. You must have first recorded, or backed up, this information before the key was deleted. The backup procedure is described in Backing Up a LOCAL Key (CLI). Although deleting a LOCAL key renders shares inaccessible, the shares can be made accessible again by recreating the LOCAL key.
For information about restoring keys stored in the OKM keystore, refer to the Oracle Key Manager documentation on the Oracle Technology Network (http://www.oracle.com/technetwork/indexes/documentation/index.html).
Use the following procedure to restore a backed up LOCAL key.
hostname:shares encryption local keys> create
hostname:shares encryption local key-005 (uncommitted)> set keyname=Mykey keyname = Mykey (uncommitted)
hostname:shares encryption local key-005 (uncommitted)> set key=d6a5b801ffb93fcb19ef70a11d662d8092f243c5d4ccd0cd34264b15dd0b7739 key = d6a5b801ffb93fcb19ef70a11d662d8092f243c5d4ccd0cd34264b15dd0b7739 (uncommitted)
hostname:shares encryption local key-005 (uncommitted)> commit
If the keyname is used with existing shares, you will be alerted:
Existing shares reference the key Mykey from the LOCAL keystore. Are you sure? (Y/N)
To overwrite the key value in the existing shares, type Y. Type N to not add the new key. You can then change the key used for those shares before repeating this procedure and restoring the original key. For more information, see Changing a Share Encryption Key (CLI).