1276483 – Unprivileged account used for geo-replication needs access to SSL/TLS private key when using TLS on the Management Path

Bug 1276483 - Unprivileged account used for geo-replication needs access to SSL/TLS private key when using TLS on the Management Path

Summary: Unprivileged account used for geo-replication needs access to SSL/TLS private...

Keywords:
Status:	NEW
Alias:	None
Product:	Gluster-Documentation
Classification:	Community
Component:	Other
Sub Component:
Version:	unspecified
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Anjana Suparna Sriram
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2015-10-29 19:55 UTC by ajs124
Modified:	2023-01-04 04:36 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Embargoed:

Attachments	(Terms of Use)

Description ajs124 2015-10-29 19:55:23 UTC

Description of problem:
As stated in the summary, the unprivileged account used together with mountbroker need to be able to access the TLS private key if glusterd is also set up to use TLS on the management path. This is not mentioned in the admin guide at all.

How reproducible:
Always

Steps to Reproduce:
1. Set up GlusterFS with TLS and enable TLS for the management daemon
2. Try to set up geo replication by following the admin guide (+ no root user)
3. Take hours/days to figure out that the geoaccount needs access to the tls key

Note You need to log in before you can comment on or make changes to this bug.