Operator keys are used by the BFT consensus mechanism to agree on the published keys. Every Replica node must generate a new set of private and public keys for the system to become operational and handle external requests.

The operator keys must be published to all of the Replica Network using the previously assigned bootstrap keys and the consensus mechanism.

Procedure

1. Generate a private operator key.

   ​openssl ecparam -name secp256k1 -genkey -noout -out private-key.pem

2. Generate a public operator key using the ECDSA algorithm.

   ​openssl ec -in private-key.pem -pubout -out public-key.pem

3. Convert the multiple line certificate file into a single line.

   awk 'NF {sub(/\r/, ""); printf "%s\\n",$0;}' <certificate_file>

What to do next

Add the public key parameter in the deployment descriptor file. See Configuring the Deployment Descriptor Parameters on vSphere. During deployment, the operator public key details are added to all the Replica nodes.