c5dc851235
We already are setting a pre-shared key by default for the pacemaker cluster. This was done in order to communicate with TLS-PSK with pacemaker-remote clusters. This key is also useful for us to enable encrypted traffic for the regular cluster traffic, which we enable by default with this patch. Change-Id: I349b8bf79eeeaa4ddde1c17b7014603913f184cf
7 lines
236 B
YAML
7 lines
236 B
YAML
---
|
|
features:
|
|
- |
|
|
Encryption is used for pacemaker traffic by default. This is achieved by
|
|
using a pre shared key for all the pacemaker cluster nodes (same as the one
|
|
that was used for the pacemaker remote communication).
|