When you run Core Services for the first time, it generates a set of authentication keys called domain keys. If you have more than one Core Services, and if you register an agent in Secure Configuration Manager that supports shared secret authentication, another Core Services cannot communicate with that agent unless it has those domain keys. You must export the domain keys from your first Core Services, and import them into the other Core Services to communicate with that agent. Agents that support shared secret authentication include Windows and UNIX agents.
To set up multiple Core Services to communicate with agents:
On the Core Services computer that registered the agents, open the ExportDomainKeys.bat file. By default, this file is located c:\Program Files (x86)\NetIQ\Secure Configuration Manager\Core Services\bin.
At the Filename prompt, type the name of the file to store the domain keys and press Enter. You can enter just the file name, which will be saved in the same folder, or you can enter a full path and file name.
At the Password prompt, type a password that the other Core Services must use to access the domain keys for importing, and press Enter.
For each Core Services computer that needs to access the agents registered on the first Core Services, complete the following steps:
Open the ImportDomainKeys.bat file.
At the Filename prompt, type the name of the file where the domain keys are stored and press Enter.
At the Password prompt, type the password to access the domain keys and press Enter.
Restart Core Services.
Open the Windows console to see the registered agents.