-
Type: Task
-
Resolution: Fixed
-
Priority: Major - P3
-
Affects Version/s: None
-
Labels:None
Description
This change adds two new configuration options:
security.kmip.connectTimeoutMS https://github.com/10gen/mongo-enterprise-modules/blob/abe9fdf023804bf9ad965af46087982643206830/src/encryptdb/kmip_options.idl#L25
This setting alters the default timeout period of 5 seconds for connections from a mongod instance to a KMIP server for establishing secrets used in encryption at rest.
security.kmip.connectRetries https://github.com/10gen/mongo-enterprise-modules/blob/abe9fdf023804bf9ad965af46087982643206830/src/encryptdb/kmip_options.idl#L32
This setting forces mongod to retry failed connections to external KMIP servers up to N times.
Description of Linked Ticket
Currently the connection to a KMIP server will timeout after 5000 ms. If the KMIP server fails after this initial connection, mongod is unable to start.
Customer is requesting that we retry this connection for a configurable number of times before failing.
Scope of changes
Impact to Other Docs
MVP (Work and Date)
Resources (Scope or Design Docs, Invision, etc.)
- documents
-
SERVER-41396 Add option for KMIP Retries
- Closed