Generate a new set of cryptographic keys
"Old machine" is the machine that has the original set of cryptographic keys that were generated. "New machine" is the device you want the new set of cryptographic keys on.
Step 1) Generate a passcode from your Old machine
Choose the operating system that is running on your old machine.
Make sure to replace <REPLACE_client> with your client atSign
~/.local/bin/at_activate otp -a @<REPLACE_client>
Step 2) Make an authorization request on your New machine
Choose the operating system that is running on your new machine.
Make sure to replace the appropriate values:
<REPLACE_client> with your client atSign
<client_device_name> with a unique name for the device
<PASSCODE> with the passcode from Step 1
~/.local/bin/at_activate enroll -a @<REPLACE_client> \
-s <PASSCODE> \
-p noports \
-k ~/.atsign/keys/@<REPLACE_client>_key.atKeys \
-d <client_device_name> \
-n "sshnp:rw,sshrvd:rw"
Step 3) Approve the request on your Old machine
Choose the operating system that is running on your old machine.
Make sure to replace <client_device_name> with the device name from Step 2
~/.local/bin/at_activate approve -a @<REPLACE_client> \
--arx noports \
--drx <client_device_name>3.1 Once step 2 is complete press refresh and the new request will appear
3.2 Approve or Deny the request
If the request looks incorrect, then press "Deny" to deny it, and start the process again.
If the request looks correct, then press "Approve" to approve it.
3.3 Once the request is approved, it should disappear from the installer, the new machine's enrollment should complete in a few seconds.
Last updated