S3 storage backend
247 views
Skip to first unread message
Dave Cottlehuber
Jan 19, 2016, 6:15:48 AM1/19/16
to vault...@googlegroups.com
Hi,
Is it safe to use the S3 backend and have multiple vault instances use
it? The "This backend does not support HA." doesn't forbid it....
Our architecture is a bit too distributed to use etc or consul safely,
and I'd like to put a vault instance in each zone. Our vault usage is
low.
A+
Dave
Is it safe to use the S3 backend and have multiple vault instances use
it? The "This backend does not support HA." doesn't forbid it....
Our architecture is a bit too distributed to use etc or consul safely,
and I'd like to put a vault instance in each zone. Our vault usage is
low.
A+
Dave
mar...@beamartyr.net
Jan 19, 2016, 6:31:45 AM1/19/16
to Vault
I do that in production myself.
In the next release of Vault, it will even support HA (see https://github.com/hashicorp/vault/pull/840)
One caveat is that you (probably) want to use the disable_cache configuration directive to ensure that each instance is reading up-to-date data from S3
Issac
Jeff Mitchell
Jan 19, 2016, 9:41:04 AM1/19/16
to vault...@googlegroups.com
On Tue, Jan 19, 2016 at 6:15 AM, Dave Cottlehuber <d...@skunkwerks.at> wrote:
> Hi,
>
> Is it safe to use the S3 backend and have multiple vault instances use
> it? The "This backend does not support HA." doesn't forbid it....
Only if you use different buckets. Only HA backends can safely support
> Hi,
>
> Is it safe to use the S3 backend and have multiple vault instances use
> it? The "This backend does not support HA." doesn't forbid it....
multiple Vault instances using the exact same data store.
--Jeff
Reply all
Reply to author
Forward
0 new messages