If running, stop the Ranger KMS server.

Go to the Ranger KMS directory: /usr/hdp/version/ranger-kms.

	Note
	DB details from which Ranger KMS needs migration must be correctly configured (located in the xml config file of Ranger KMS). HSM details must be the KMS HSM to which we are migrating.

Run: ./DBMK2HSM.sh provider HSM_PARTITION_NAME.

For example:

Enter the partition password.

After the migration is completed: if you want to run Ranger KMS according to the new configuration (either with HSM enabled or disabled,) update the Ranger KMS properties if required.

Start Ranger KMS

Note: After migration, when Ranger KMS is running with HSM enabled: from DB table “ranger_masterkey”, delete the Master Key row if it is not required as Master Key already being migrated to HSM.