Consolidating "--ssl", "--ssl-secure", and "--ssl-insecure" options in stonith devices

Solution Verified - Updated -

Issue

Documentation for many stonith devices lists redundant options for --ssl and --ssl_secure options, and in some cases inclusion --ssl was required in order for these options to function as expected:

$ man fence_cisco_ucs
------------------------->8-------------------------
       ssl    Use SSL connection with verifying certificate

       ssl_insecure
              Use SSL connection without verifying certificate

       ssl_secure
              Use SSL connection with verifying certificate

The below affected stonith agents have been updated so that usage of --ssl is not required for --ssl_insecure or --ssl_secure options, and these can now be used independently of setting the --ssl:

  • fence_cisco_ucs
  • fence_docker
  • fence_rhevm
  • fence_vmware_rest
  • fence_vmware_soap
  • fence_vmware_vcloud
  • fence_zvmip
  • Fencing agents importing fencing.py that use the --ssl option.

Environment

  • Red Hat Enterprise Linux Server 8 (with the High Availability or Resilient Storage Add On)
  • Red Hat Enterprise Linux Server 9 (with the High Availability or Resilient Storage Add On)
  • Pacemaker
  • fencing agents

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content