Articles in this section

How to proceed security authentication without downtime,

Angela

Context

Starting from server 5.7, manage roles and users will use asadm. For reference, apply the following steps to dynamically enable security authentication in a rolling restart manner. 

Method

  1. Quiesce the node.
  2. Stop the Aerospike server.
  3. Modify aerospike.conf file, the presence of a security stanza enables security and access control. 
  4. Start the Aerospike Server.
  5. Using --single-node parameter to login with the default username admin and password admin. 
    • asadm --single-node -h [HOST] -p [PORT] -U [USER] -P [PASSWORD]]
  6. Create users and roles on the single node,
  7. Make sure security.smd file generated in /opt/aerospike/smd/security.smd
  8. Verify the created user is able to login
  9. Move to next node

Notes

security.smd will generate when uers/roles are created, however since the cluster is in a mix security mode. asadm is not able to create user/roles for all nodes, security.smd will need to be generated node by node.

Applies To Earliest Version

5.7

Applies To Latest Version

Current Version
Was this article helpful?
0 out of 0 found this helpful