All Microservices apart from Keyvault Down
Symptoms
- All microservices apart from Keyvault down
- Files nginx. and nxing-internal. missing from /etc/nginx/ssl/
- Many logs show errors, e.g.
KEYVAULT [ERROR] 401 PERMISSION_DENIED Basic Authentication missing
AUTH [FATAL] Get https://localhost/keyvault/api/v1/passphrase/XXXXXXXX: x509: certificate signed by unknown authority
Solution
- Log on the PrivX server as root
- Update Nginx trust with command
# /opt/privx/scripts/init_nginx.sh update-trust /etc/nginx/ssl/nginx.crt
- Restart Nginx with command
# systemctl restart nginx
- Restart PrivX with command
# systemctl restart privx