Cache Servers fail to start with org.apache.geode.GemFireConfigException if setting security configuration
search cancel

Cache Servers fail to start with org.apache.geode.GemFireConfigException if setting security configuration

book

Article ID: 294105

calendar_today

Updated On:

Products

VMware Tanzu Gemfire

Issue/Introduction

Symptoms:
When Pivotal GemFire locators are configured with the Cluster Configuration service enabled, enable-cluster-configuration=true and security settings (security-manager=...), cache servers fail to start with the following error if not configured to use the Cluster Configuration service (use-cluster-configuration=false): 
org.apache.geode.GemFireConfigException: A server must use cluster configuration when joining a secured cluster.
    at org.apache.geode.internal.cache.GemFireCacheImpl.requestSharedConfiguration(GemFireCacheImpl.java:1004)
    at org.apache.geode.internal.cache.GemFireCacheImpl.initialize(GemFireCacheImpl.java:1149)
    at org.apache.geode.internal.cache.GemFireCacheImpl.basicCreate(GemFireCacheImpl.java:758)
    at org.apache.geode.internal.cache.GemFireCacheImpl.create(GemFireCacheImpl.java:745)
    at org.apache.geode.cache.CacheFactory.create(CacheFactory.java:173)
    at org.apache.geode.cache.CacheFactory.create(CacheFactory.java:212)

Environment


Cause

The setting of the security related properties on locator requires the use of the Cluster Configuration service in order to ensure a consistent security model throughout the cluster. Setting any of the following properties causes peer nodes to use the Cluster Configuration service to successfully join the cluster:
  • security-manager
  • security-post-processor

Resolution

As stated in the error message, use the Cluster Configuration service on the peer (cache server) nodes to join a secured cluster. Use either of the following approaches:

Option 1: Remove the entry to set use-cluster-configuration=false from the property file or script file to start cache servers.
Option 2: Set use-cluster-configuration=true in the property file or script file to start cache servers.

Powered by Wolken Software