Red Hat Bugzilla – Bug 233129
AEP: failover info is not cached properly?
Last modified: 2017-04-10 10:19 EDT
AEP - proxy failover.
I have two CA's placed in the AEP configuration.
ca #1 : ivanova.dsqa.sjc2.redhat.com: 15443
ca #2 : switch.dsdev.sjc.redhat.com:15443
I shutdown CA#1.
the 1st certificate request failed over to ca#2 as expected.
the 2nd certificate request also failed over to ca#2.
Steve, per your design, this shouldn't be happening , right ?.
if ca#1 is down, this info is cached for 5 minutes and subsequent
certificate requests should go directly to ca#2 ?.
Sorry, the default retry interval is 30 seconds. You can change this value in
the registry. I documented it in appendix 2 of the documentation.
Is this a dupe of : bug 233044 ?
Verified with CS 7.3 build 04/20
used windows2003sp1 - child domain to do autoenrollment.
setup failover connections to the following CAs.
1. CS 71 CA
2. CS 72 CA
They are both subordinates of the same rootCA.
1. stopped CS71CA. AEP failed over to the 72CA.
2. stopped CS72CA. AEP failover over to the 71CA.
failover caching works ok.
User firstname.lastname@example.org's account has been closed
Bug already CLOSED/VERIFIED. setting screened+ flag