BZ2031163: change the storage location for Tang server keys

chinmayi-chandrasekar · chinmayi-chandrasekar · commit 53c185d1b2b0 · 2022-01-25T15:47:17.000+05:30
diff --git a/modules/nbde-backing-up-server-keys.adoc b/modules/nbde-backing-up-server-keys.adoc
@@ -5,7 +5,7 @@
 [id="nbde-backing-up-server-keys_{context}"]
 = Backing up keys for a Tang server
 
-The Tang server, by default, stores its keys in the `/usr/libexec/tangd-keygen` directory. Back up the contents of this directory to enable recovery in the event of the loss of the Tang server. The keys are sensitive and since they are able to perform the boot disk decryption of all hosts that have used them, the keys must be protected accordingly.
+The Tang server uses `/usr/libexec/tangd-keygen` to generate new keys and stores them in the `/var/db/tang` directory by default. To recover the Tang server in the event of a failure, back up this directory. The keys are sensitive and because they are able to perform the boot disk decryption of all hosts that have used them, the keys must be protected accordingly.
 
 .Procedure
 
