Secure communication in global clusters

Secure communication in global clusters

Prev	Connecting clusters-Creating global clusters	Next

Secure communication in global clusters

In global clusters, VCS provides the option of making the following communications secure:

Communication between the wide-area connectors.
Communication between the wide-area connectors and the Steward process.

For secure authentication, the wide-area connector process gets a security context as an account in the local authentication broker on each cluster node.

The WAC account belongs to the same domain as HAD and Command Server and is specified as:

name = _WAC_GCO_(systemname)

domain = HA_SERVICES@(fully_qualified_system_name)

You must configure the wide-area connector process in all clusters to run in secure mode. If the wide-area connector process runs in secure mode, you must run the Steward in secure mode.

See Configuring the Steward process (optional)

See Prerequisites for clusters running in secure mode.

Prev	Up	Next
The Steward process: Split-brain in two-cluster global clusters	Home	Prerequisites for global clusters