Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-13091

Investigate changes in SERVER-41396: Add option for KMIP Retries

XMLWordPrintableJSON

      Description

      Downstream Change Summary

      This change adds two new configuration options:

      security.kmip.connectTimeoutMS https://github.com/10gen/mongo-enterprise-modules/blob/abe9fdf023804bf9ad965af46087982643206830/src/encryptdb/kmip_options.idl#L25

      This setting alters the default timeout period of 5 seconds for connections from a mongod instance to a KMIP server for establishing secrets used in encryption at rest.

      security.kmip.connectRetries https://github.com/10gen/mongo-enterprise-modules/blob/abe9fdf023804bf9ad965af46087982643206830/src/encryptdb/kmip_options.idl#L32

      This setting forces mongod to retry failed connections to external KMIP servers up to N times.

      Description of Linked Ticket

      Currently the connection to a KMIP server will timeout after 5000 ms. If the KMIP server fails after this initial connection, mongod is unable to start.

      Customer is requesting that we retry this connection for a configurable number of times before failing.

      Scope of changes

      Impact to Other Docs

      MVP (Work and Date)

      Resources (Scope or Design Docs, Invision, etc.)

            Assignee:
            andrew.feierabend@mongodb.com Andrew Feierabend (Inactive)
            Reporter:
            backlog-server-pm Backlog - Core Eng Program Management Team
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved:
              3 years, 47 weeks, 3 days ago