The loss of the primary master which has a unique role as certificate server is a single point of failure
Issue
- We expect the architecture to be resilient.
- failure of Master node primary CA
- master which hold the certificate authority dies (holds the ca.serial.txt file) it's a single point of failure
- etcd node holding CA dies
- etcd ca should be available on all nodes after installation
Environment
- OpenShift Container Platform 3.5, 3.7, 3.9
- master which hold the certificate authority dies (holds the ca.serial.txt file) it's a single point of failure.
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.