Ask Your Question

moving keystone to another server

asked 2017-04-01 14:05:08 -0500

minimike gravatar image

updated 2017-04-01 14:10:22 -0500

Hi there

I would like to move keystone as service to another server. The new server would get the IP from the old one. About fernet-keys. Do I have to copy the folder for fernet-keys? Or could I create just new fernet-keys? A planned dowtime of the complete environment is no problem.

best Darko

edit retag flag offensive close merge delete

2 answers

Sort by ยป oldest newest most voted

answered 2017-04-05 11:31:32 -0500

updated 2017-04-05 11:32:03 -0500

If I understood it right the keys are only for encrypting the fernet tokens. With a planned downtime you shouldn't face any issue when the system comes back again and re-issues new tokens with the new keys. The old tokens will be all expired.

edit flag offensive delete link more

answered 2017-08-03 05:51:14 -0500

Shaik Saddam Hussain gravatar image

If you are planning to use keystone from another server then below are the points that need to be considered

  1. Low network latency between two servers (OpenStack server and Remote keystone server on which you are planning to use keystone)

  2. Keystone client is used on your new server with the same version as OpenStack Server

Then you can be able to use keystone from different server

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower


Asked: 2017-04-01 14:05:08 -0500

Seen: 204 times

Last updated: Aug 03 '17