Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-18863

"Circle of trust" breaks with the destruction of the HA primary node

    Details

    • Type: Bug
    • Status: Open
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: 6.8.6
    • Fix Version/s: None
    • Labels:
      None
    • Environment:

      Description

      According to this section in the Mission Control user guide https://www.jfrog.com/confluence/display/MC/Disaster+Recovery#DisasterRecovery-EstablishingaCircleofTrust-Artifactory6.3.0andabove a "circle of trust" must be established between the Master and Target services by copying each other's root.crt to each others $ARTIFACTORY_HOME/access/etc/keys/trusted folder. Assuming this task happens on the primary node for each service/site, the circle of trust will be broken upon the destruction of that primary node.

      The folder mentioned isn't replicated amongst each node in an HA cluster like some other files are. Even if you recover the primary node back into the cluster using master.key you will still need to re-establish the circle of trust on that node as an additional step. 

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              felipe.ramirez Felipe Ramirez
            • Votes:
              2 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated: