I’m trying to enable HA on some components that usually supports it through the hacluster charm.
Everything seems to bo correct but, only 1 component out of 3 seem to work properly.
The 2 others have an error message saying that apache is not started.
SSHing to one of those unit, I see that the certificate correspondig to the vip has not been generated on the units that are not the leader unit but apache configuration is expecting it and so, since the certificate is not there, it fails.
Why so ?
Why this certificate is not generated on the non leader units ?
It happened with all the apps I tried to configure as HA such as Glance, Heat, keystone, …
They all fail for the same reason.
Here is a snippet from my bundle :
heat: charm: cs:heat num_units: 3 to: - lxd:0 - lxd:1 - lxd:2 options: vip: "192.168.210.224 192.168.211.224" bindings: "": internal admin: public ha: public public: public heat-hacluster: charm: cs:hacluster bindings: "": internal heat-mysql-router: charm: cs:mysql-router bindings: "": internal relations: - - heat:ha - heat-hacluster:ha - - heat:identity-service - keystone:identity-service - - heat:amqp - rabbitmq-server:amqp - - heat:shared-db - heat-mysql-router:shared-db - - heat-mysql-router:db-router - mysql-innodb-cluster:db-router - - heat:certificates - vault:certificates
Just to clarify : I have no issue with Vault and this deployment work like a charm when my components are not in HA, only when a scale them up with hacluster, it fails.
Here is the ending result :
App Version Status Scale Charm Store Rev OS Notes heat 14.0.0 blocked 3 heat jujucharms 277 ubuntu heat-hacluster active 3 hacluster jujucharms 69 ubuntu heat-mysql-router 8.0.21 active 3 mysql-router jujucharms 3 ubuntu Unit Workload Agent Machine Public address Ports Message heat/0 blocked idle 0/lxd/2 192.168.210.36 8000/tcp,8004/tcp Services not running that should be: apache2 heat-hacluster/2 active idle 192.168.210.36 Unit is ready and clustered heat-mysql-router/2 active idle 192.168.210.36 Unit is ready heat/1 blocked idle 1/lxd/2 192.168.210.23 8000/tcp,8004/tcp Services not running that should be: apache2 heat-hacluster/1 active idle 192.168.210.23 Unit is ready and clustered heat-mysql-router/1 active idle 192.168.210.23 Unit is ready heat/2* blocked idle 2/lxd/1 192.168.210.41 8000/tcp,8004/tcp Services not running that should be: apache2 heat-hacluster/0* active idle 192.168.210.41 Unit is ready and clustered heat-mysql-router/0* active idle 192.168.210.41 Unit is ready