Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-18863

"Circle of trust" breaks with the destruction of the HA primary node

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open
    • Resolution: Unresolved
    • Affects Version/s: 6.8.6
    • Fix Version/s: None
    • Labels:
      None
    • Environment:
    • Severity:
      Medium

      Description

      According to this section in the Mission Control user guide https://www.jfrog.com/confluence/display/MC/Disaster+Recovery#DisasterRecovery-EstablishingaCircleofTrust-Artifactory6.3.0andabove a "circle of trust" must be established between the Master and Target services by copying each other's root.crt to each others $ARTIFACTORY_HOME/access/etc/keys/trusted folder. Assuming this task happens on the primary node for each service/site, the circle of trust will be broken upon the destruction of that primary node.

      The folder mentioned isn't replicated amongst each node in an HA cluster like some other files are. Even if you recover the primary node back into the cluster using master.key you will still need to re-establish the circle of trust on that node as an additional step. 

        Attachments

          Activity

              People

              Assignee:
              Unassigned
              Reporter:
              felipe.ramirez Felipe Ramirez
              Votes:
              3 Vote for this issue
              Watchers:
              5 Start watching this issue

                Dates

                Created:
                Updated:

                  Sync Status

                  Connection: RTFACT Sync
                  RTMID-18863 -
                  SYNCHRONIZED
                  • Last Sync Date: