consul-replicate icon indicating copy to clipboard operation
consul-replicate copied to clipboard
verified publisher icon hashicorp

vault + consul cross DC setup

Open Niranjankolli opened this issue 6 years ago • 1 comments

I am working on a vault multi DC setup with consul as backend storage. 3 nodes consul cluster in each DC with LAN clusters. Using consul-replicate am replicating the data from source to destination. Whenever I create the new secret engine, it is not getting replicated to secondary DC. Once I restart vault in secondary DC am able to see the secret engine. Keys/policies/users are getting replicated.

I followed hashicorp/vault#674. Anyone achieved this setup. ?

Niranjankolli avatar Feb 09 '20 08:02 Niranjankolli

Hello - As mentioned in https://github.com/hashicorp/vault/issues/674 and on the mailing list, while consul-replicate will certainly replicate the data this is not an officially supported way for multi-dc replication in Vault at this time, and no current plans to support it. Specifically from hashicorp/vault#674 :

This is definitely a "hope it works but it's definitely not officially supported" scenario

I recommend closing this issue, as it's not an issue with consul-replicate and not supported by Vault.

catsby avatar Feb 11 '20 17:02 catsby