Bug 1276483 - Unprivileged account used for geo-replication needs access to SSL/TLS private key when using TLS on the Management Path
Unprivileged account used for geo-replication needs access to SSL/TLS private...
Status: NEW
Product: Gluster-Documentation
Classification: Community
Component: Other (Show other bugs)
unspecified
Unspecified Unspecified
unspecified Severity unspecified
: ---
: ---
Assigned To: Divya
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2015-10-29 15:55 EDT by ajs124
Modified: 2016-01-11 04:13 EST (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description ajs124 2015-10-29 15:55:23 EDT
Description of problem:
As stated in the summary, the unprivileged account used together with mountbroker need to be able to access the TLS private key if glusterd is also set up to use TLS on the management path. This is not mentioned in the admin guide at all.

How reproducible:
Always

Steps to Reproduce:
1. Set up GlusterFS with TLS and enable TLS for the management daemon
2. Try to set up geo replication by following the admin guide (+ no root user)
3. Take hours/days to figure out that the geoaccount needs access to the tls key

Note You need to log in before you can comment on or make changes to this bug.