Recover Key Pair

Steps to recover key Pair:

1. Create a similar instance (In that example we have lost the key Pair of testdb1 instance running on red hat and to recover the key pair we have create a similar instance name recover-key with red hat operating system)

2. Download the key pair from newly created Instance (recovery-key)

3. Stop the instance that we want to recover key pair (In that example testdb1)

4. Detach the root volume from that instance (testdb1)

5. Attach the root volume to newly created instance (recover-key)

6. Mount the root volume to newly created instance (recover-key)

7. Overwrite the authorized_keys from newly created instance to mounted volume (recover-key)

8. Unmount the volume (recover-key)

9. Detach the added root volume from newly created instance (recover-key)

10. Attach the root volume to the instance (testd1)

11. Start the instance (testdb1)

We will recover key for testdb1 running on red hat operating system

Click Launch Instance Button

Select Red Hat Enterprise Linux 7.3

Click Next: Configure Instance Details

Click Next: Add Storage

Clieck Next: Add Tags

Click Add Tag

Give Key Name and Volume Name, and Click Next: Configure Security Group

Click Review and Launch

Click Launch

Select Create a new Key pair

Give Key Pair Name and Click Download Key pair. Click Launch.

Now the newly created instance is ready.

Stop testdb1.

Now detatch the Root volume /dev/sda1

Select /dev/sda1 and Click EBS ID

Click Actions-> Detach Volume

click Yes, Detach. Now we have detached root the volume from testdb1.

Now attach the root volume to newly created instance recover-key. Click Actions->Attach Volume

Select instance recover-key.

Give Device name for the attach volume and Click Attach.

Now you can see the Block devices /dev/sdf has been attached in recover-key instane

Now Overwrite the authorized_keys from newly created instance to mounted volume. Log in to the recover-key instance using the downloaded key.

[ec2-user@ip-172-31-18-207 ~]$ sudo -i

[root@ip-172-31-18-207 ~]# lsblk

NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT

xvda 202:0 0 10G 0 disk

ââxvda1 202:1 0 1M 0 part

ââxvda2 202:2 0 10G 0 part /

xvdf 202:80 0 10G 0 disk

ââxvdf1 202:81 0 1M 0 part

ââxvdf2 202:82 0 10G 0 part

[root@ip-172-31-18-207 ~]# mkdir /mnt/recovery

[root@ip-172-31-18-207 ~]# mount -o nouuid /dev/xvdf2 /mnt/recovery/

[root@ip-172-31-18-207 ~]# cat /home/ec2-user/.ssh/authorized_keys>/mnt/recovery/home/ec2-user/.ssh/authorized_keys

[root@ip-172-31-18-207 ~]# umount /mnt/recovery/

Now stop the recover-key instance. Click Actions->Instance State->Stop

Click Yes,Stop Button

Select the added volume group to detatch it. Select /dev/sdf and click EBS ID.

Detatch volume by clicking Actions->Detach Volume

Click Yes, Detach Button.

Attach the volume to testdb1. Click Actions-> Attach Volume.

Select Instance testdb1 and provide device /dev/sda1, and click Attach

Now you can see /dev/sda1 has been attached in testdb1

Start the instance testdb1. Click Actions->Instance State->Start

Click Yes,Start

Get the public IP to login testdb1 using the downloaded key from recover-key instance.

Now log in to testdb1 instance using the downloded key from recover-key from putty. I have converted the pem file to ppk file using PuTTYgen.

Select Auth and click Browse

Select the Key and click Open

Provide the IP address and click Open