Bug 2216485

Summary: cluster and quorum can have distinct passwords
Product: Red Hat Enterprise Linux 8 Reporter: Rich Megginson <rmeggins>
Component: rhel-system-rolesAssignee: Rich Megginson <rmeggins>
Status: CLOSED ERRATA QA Contact: michal novacek <mnovacek>
Severity: unspecified Docs Contact: Steven J. Levine <slevine>
Priority: unspecified    
Version: 8.9CC: djez, mnovacek, rhel-cs-system-management-subsystem-qe, spetrosi
Target Milestone: rcKeywords: Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: role:ha_cluster
Fixed In Version: rhel-system-roles-1.22.0-0.16.el8 Doc Type: Enhancement
Doc Text:
Enhancement: cluster and quorum can have distinct passwords Reason: The same quorum hosts can be joined to multiple, separate clusters. Since the passwords of the "hacluster" user on these clusters might be different, it makes sense to configure them separately. Result: I separated `pcs auth` for the cluster and qdevice. I also introduced an new var `ha_cluster_hacluster_qdevice_password`, which is used for qdevice auth. If the new var is not set, qdevice auth will fall back to use `ha_cluster_hacluster_password` like rest of the cluster. This should make the change fully backwards compatible.
 Story Points: ---
Clone Of: 2216481 Environment:
Last Closed: 2023-11-14 15:31:19 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2216481    
Bug Blocks:    

Description Rich Megginson 2023-06-21 15:11:09 UTC 
+++ This bug was initially created as a clone of Bug #2216481 +++

The same quorum hosts can be joined to multiple, separate clusters. Since the passwords of the 'hacluster' user on these clusters might be different, it makes sense to configure them separately.  https://github.com/linux-system-roles/ha_cluster/pull/134
Comment 8 michal novacek 2023-07-26 10:14:30 UTC 
I have tested that it is possible to configure quorum device with different ha_cluster password than the cluster have with rhel-system-roles-1.22.0-0.16.el8.noarch
Comment 13 errata-xmlrpc 2023-11-14 15:31:19 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:6946