RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 2216481 - cluster and quorum can have distinct passwords
Summary: cluster and quorum can have distinct passwords
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 9
Classification: Red Hat
Component: rhel-system-roles
Version: 9.3
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: 9.3
Assignee: Rich Megginson
QA Contact: michal novacek
Steven J. Levine
URL:
Whiteboard: role:ha_cluster
Depends On:
Blocks: 2216485
TreeView+ depends on / blocked
 
Reported: 2023-06-21 15:02 UTC by Rich Megginson
Modified: 2023-11-07 09:31 UTC (History)
7 users (show)

Fixed In Version: rhel-system-roles-1.22.0-0.16.el9
Doc Type: Enhancement
Doc Text:
Enhancement: cluster and quorum can have distinct passwords Reason: The same quorum hosts can be joined to multiple, separate clusters. Since the passwords of the "hacluster" user on these clusters might be different, it makes sense to configure them separately. Result: I separated `pcs auth` for the cluster and qdevice. I also introduced an new var `ha_cluster_hacluster_qdevice_password`, which is used for qdevice auth. If the new var is not set, qdevice auth will fall back to use `ha_cluster_hacluster_password` like rest of the cluster. This should make the change fully backwards compatible.
Clone Of:
: 2216485 (view as bug list)
Environment:
Last Closed: 2023-11-07 08:29:49 UTC
Type: ---
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github linux-system-roles ha_cluster pull 134 0 None open feat: cluster and quorum can have distinct passwords 2023-06-21 15:08:16 UTC
Red Hat Issue Tracker RHELPLAN-160367 0 None None None 2023-06-21 15:04:53 UTC
Red Hat Issue Tracker RHELPLAN-160368 0 None None None 2023-06-21 15:04:57 UTC
Red Hat Product Errata RHEA-2023:6390 0 None None None 2023-11-07 08:30:15 UTC

Description Rich Megginson 2023-06-21 15:02:32 UTC 
The same quorum hosts can be joined to multiple, separate clusters. Since the passwords of the 'hacluster' user on these clusters might be different, it makes sense to configure them separately.  https://github.com/linux-system-roles/ha_cluster/pull/134
Comment 12 michal novacek 2023-07-26 10:12:23 UTC 
I have tested that it is possible to configure quorum device with different ha_cluster password than the cluster with rhel-system-roles-1.22.0-0.16.el9.noarch
Comment 18 errata-xmlrpc 2023-11-07 08:29:49 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (rhel-system-roles bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2023:6390
Note You need to log in before you can comment on or make changes to this bug.