Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

improvement provide more options when using a dedicated replication_role #558

Open
Tiago-Anastacio opened this issue Mar 27, 2019 · 1 comment
Open

improvement provide more options when using a dedicated replication_role #558

Tiago-Anastacio opened this issue Mar 27, 2019 · 1 comment

Comments

@Tiago-Anastacio
Copy link

Tiago-Anastacio commented Mar 27, 2019
edited
Loading

Hello,

postgres release 11.1 (rhel community package)
repmgr release 4.2.0 (rhel community package)

When using a dedicated replication_role
we cannot use a cert authentification method both for this user and repmgr user.

Because repmgr will build primary_conninfo on recovery.conf file based on parameter conn_info from repmgr.conf.
So these two users will share the same client certificate/key and so the same COMMON NAME in the cert.

To provide a cert authentification for both users we would like repmgr to manage these options
sslmode
sslkey
sslcert
sslrootcert

Thank you

Tiago ANASTACIO
@Tiago-Anastacio
Copy link
Author

I found one workaround: using pg_ident.conf file with cert authentification, I thought pg_ident only worked with peer authentification.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Tiago-Anastacio