Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-18863

"Circle of trust" breaks with the destruction of the HA primary node

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open
    • Resolution: Unresolved
    • Affects Version/s: 6.8.6
    • Fix Version/s: None
    • Labels:
      None
    • Environment:
    • Severity:
      Medium
    • Requirement Status:

      UNCOVERED

      Description

      According to this section in the Mission Control user guide https://www.jfrog.com/confluence/display/MC/Disaster+Recovery#DisasterRecovery-EstablishingaCircleofTrust-Artifactory6.3.0andabove a "circle of trust" must be established between the Master and Target services by copying each other's root.crt to each others $ARTIFACTORY_HOME/access/etc/keys/trusted folder. Assuming this task happens on the primary node for each service/site, the circle of trust will be broken upon the destruction of that primary node.

      The folder mentioned isn't replicated amongst each node in an HA cluster like some other files are. Even if you recover the primary node back into the cluster using master.key you will still need to re-establish the circle of trust on that node as an additional step. 

        Attachments

          Forms

            Activity

                People

                Assignee:
                Unassigned
                Reporter:
                felipe.ramirez Felipe Ramirez
                Votes:
                3 Vote for this issue
                Watchers:
                5 Start watching this issue

                  Dates

                  Created:
                  Updated:

                    PagerDuty