Is the Device Key restored after upgrade?
-
I have been using the Auto Config Backup service since I first started using pfSense many years ago. I recently upgraded from 2.6 to 2.7 via the USB memstick image. I had my (encrypted) config.xml file on a second USB drive during install. The install process asked for the password, but it was unable to decrypt (I forget the error as it went by too fast). I simply allowed it to reboot, defined a WAN and LAN interface from the console, launched the GUI, then restored my encrypted backup from there. I was up and running.
I then noticed that the install had created a new Device Key. This cut off access to prior backups on the Auto Config Backup service. I know that I can paste in my previous Device ID to access these, but I was anticipating the same Device Key as my 2.6 setup since I restored my config.xml file from the USB drive. Since the Device Key is derived from the RSA Public key, I assume my RSA keys were not restored either.
Does any of this mean my restore did not work? Should I overwrite the new Device Key with my old Device Key, and keep it that way? I do not want to cause any issues.
Thanks.
-
J jimp moved this topic from Problems Installing or Upgrading pfSense Software on
-
The device key is derived from the SSH keys and those are only backed up in manual backups from Diagnostics > Backup & Restore, and even then only when the option is set to do so (which is on by default).
The extra backup options such as SSH keys, DHCP leases, Captive Portal databases, and RRD files, are not supported in AutoConfigBackup as they can significantly increase the size of the backup data.