[SERVER-60610] Apply encryption at rest Created: 12/Oct/21  Updated: 12/Oct/21

Status: Needs Verification
Project: Core Server
Component/s: None
Affects Version/s: 5.1.0-rc0
Fix Version/s: None

Type: Question Priority: Major - P3
Reporter: Kyudong Kim Assignee: Kyudong Kim
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Participants:

 Description   

While testing the encryption at rest with hashicorp vault.

If there is data files on mongod folder, It returns error while starting.

Following is the message.

{"t":\{"$date":"2021-09-28T01:37:36.858+00:00"}

,"s":"E",  "c":"STORAGE",  "id":24248,   "ctx":"initandlisten","msg":"Unable to retrieve key","attr":{"keyId":".system","error":

{"code":2,"codeName":"BadValue","errmsg":"There are existing data files, but no valid keystore could be located."}

}}

Is there any enhancement the applying the encryption at rest into existing environment?

(I know rolling applying from secondary is the solution of that, I'm just wondering other solution on it like partial encryption)


Generated at Thu Feb 08 05:50:16 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.