Bug 2130019
Summary: | [RFE] ha_cluster: convert ha_cluster role to use firewall, selinux and certificate role | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | Noriko Hosoi <nhosoi> |
Component: | rhel-system-roles | Assignee: | Rich Megginson <rmeggins> |
Status: | CLOSED ERRATA | QA Contact: | David Jež <djez> |
Severity: | unspecified | Docs Contact: | Steven J. Levine <slevine> |
Priority: | unspecified | ||
Version: | 8.8 | CC: | djez, efedin, mnovacek, rhel-cs-system-management-subsystem-qe, rmeggins, spetrosi |
Target Milestone: | rc | Keywords: | FutureFeature, Triaged |
Target Release: | 8.8 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | role:ha_cluster | ||
Fixed In Version: | rhel-system-roles-1.21.0-0.10.el8 | Doc Type: | Enhancement |
Doc Text: |
.The `ha_cluster` System Role now supports automated execution of the `firewall`, `selinux`, and `certificate` System Roles
The ha_cluster RHEL System Role now supports the following features:
Using the `firewall` and `selinux` System Roles to manage port access:: To configure the ports of a cluster to run the `firewalld` and `selinux` services, you can set the new role variables `ha_cluster_manage_firewall` and `ha_cluster_manage_selinux` to `true`. This configures the cluster to use the `firewall` and `selinux` System Roles, automating and performing these operations within the `ha_cluster` System Role. If these variables are set to their default value of `false`, the roles are not performed. With this release, the firewall is no longer configured by default, because it is configured only when `ha_cluster_manage_firewall` is set to `true`.
Using the `certificate` System Role to create a `pcsd` private key and certificate pair:: The `ha_cluster` System Role now supports the `ha_cluster_pcsd_certificates` role variable. Setting this variable passes on its value to the `certificate_requests` variable of the `certificate` System Role. This provides an alternative method for creating the private key and certificate pair for `pcsd`.
|
Story Points: | --- |
Clone Of: | 2130010 | Environment: | |
Last Closed: | 2023-05-16 08:31:12 UTC | Type: | Enhancement |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 2130010 | ||
Bug Blocks: | |||
Deadline: | 2023-01-16 |
Description
Noriko Hosoi
2022-09-26 22:13:53 UTC
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2023:2804 |