Document how to run Vault in HA mode with CDK
Bug #1833595 reported by
Cory Johns
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Kubernetes Control Plane Charm |
Fix Released
|
Undecided
|
Cory Johns |
Bug Description
Running Vault in HA mode requires etcd to be up and ready, but etcd requires TLS certs which would normally be provided by Vault, leading to a chicken-and-egg problem.
The workaround is to start Vault in non-HA mode and then transition it once it's up and running, but we don't have this documented, nor have we tested this.
Changed in charm-kubernetes-master: | |
milestone: | none → 1.15 |
Changed in charm-kubernetes-master: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
https:/ /github. com/charmed- kubernetes/ kubernetes- docs/pull/ 207