Currently customer is setting up an DR environment for Advance Authentication. The DBA team would like to know if a failover happened on a database and is in READ-ONLY mode, will the application still working (etc. user able to use OTP / PUSH to authenticate )?
Kindly advice.
Release : 9.1
Read-only database won't work.
For example, for MS SQL server, to set the DB user to read-only mode:
remove the db_ddladmin, db_owner roles, and add db_datareader role.
After that, the risk server cannot startup, authentication server can startup, but any authentication operaion fails with errors similar like this,
10/12/22 20:22:09.806 INFO TXN_NATIVE 00011804 SVRMASTR - Dbm::SQL State:42000, Native Code: E5, ODBC code: [Ca Technologies][ODBC SQL Server Wire Protocol driver][Microsoft SQL Server]The UPDATE permission was denied on the object 'ARWFSEQUENCE', database 'arcotdb', schema 'dbo'.
10/12/22 20:22:09.866 INFO TXN_NATIVE 00011804 00000000 - [UDS] Dbm::SQL State:42000, Native Code: E5, ODBC code: [Ca Technologies][ODBC SQL Server Wire Protocol driver][Microsoft SQL Server]The INSERT permission was denied on the object 'ARUDSUSERAUDITLOG', database 'arcotdb', schema 'dbo'.
10/12/22 20:22:09.874 INFO TXN_NATIVE 00011804 00000000 - Dbm::SQL State:42000, Native Code: E5, ODBC code: [Ca Technologies][ODBC SQL Server Wire Protocol driver][Microsoft SQL Server]The INSERT permission was denied on the object 'ARWFISSUANCEAUDITLOG', database 'arcotdb', schema 'dbo'.
etc.