01-13-2014 05:09 AM
Got 4 cppm nodes - all mgt interfages on the same management DMZ. Two are for DMZ, two for internal auth.
Internal cppm nodes will be used for publisher and backup publisher.
I install certs trusted from the company pki - all OK. Install PKI roots and intermediates too.
I go to the three remaining nodes and click make subscriber.
Type in IP and PW, and start the sync up. I get sync error on initial setup.
Policy propagates ok thoughout the cluster, but now I get "Failed to verify server certificate(s)"
From the publisher I cannot view the IPs etc. for the three subscribers.
Constant error at every 30min sync interval, eventual the subscriber drops off.
The subscribers are now using self signed certs too.
01-13-2014 06:30 AM
all ok cluster wide I ahve changed the timzone however to it reflects london and not guernsey, I guess in terms of time they are on the time zone - but I can cross that off the list now if you like
thanks for the feedback btw
01-14-2014 10:53 PM
01-14-2014 10:56 PM
--Give Kudos: found something helpful, important, or cool? Click Kudos Star in a post.
--Problem Solved? Click "Accepted Solution" in a post.
01-15-2014 09:04 AM
Specifically this was due to endpoint entries in cppm referencing a null vlaue, which within the postgre sql database referenced a tag that had no actual use. when the subscribers added to the cluster and the database was replayed the clustering failed. (clearly I cannot take a pinch of credit)
guy on the phone completely nailed the problem and now my cluster is working perfectly... kudos TAC!