Hi,
I want to enable caching for transit engine with the size of atleast 1,00,000 entries.
For that I am using this endpoint:
After hitting this endpoint it shows " cache configurations will be applied when this backend is restarted".
So I reload the transit plugin using “vault plugin reload -plugin transit”, which shows “Success! Reloaded plugin: transit”.
But then If i hit “vault read transit/cache-config”, it says → “caching is disabled for this transit mount”
Ss - >
I am not sure what is the missing piece here, as nothing of this sort is mentioned in Vault documentations.
Any help regarding this is really appreciated.
Thanks!
Hi @maxb , can you please help with this?
This is my vault.conf
disable_mlock = true
ui = true
disable_cache = false
listener "tcp" {
tls_disable = 1
address = "[::]:8200"
cluster_address = "[::]:8201"
telemetry {
unauthenticated_metrics_access = "true"
}
}
storage "raft" {
path = "/vault/data"
retry_join {
leader_api_addr = "http://vault-dev-0.vault-dev-internal:8200"
}
retry_join {
leader_api_addr = "http://vault-dev-1.vault-dev-internal:8200"
}
retry_join {
leader_api_addr = "http://vault-dev-2.vault-dev-internal:8200"
}
autopilot {
cleanup_dead_servers = "true"
last_contact_threshold = "200ms"
last_contact_failure_threshold = "10m"
max_trailing_logs = 250000
min_quorum = 2
server_stabilization_time = "10s"
}
}
seal "awskms" {
region = "ap-southeast-1",
kms_key_id = "ce877695-d49a-437b-a58b-f01e73caf8fb"
}
telemetry {
prometheus_retention_time = "24h",
disable_hostname = true
}
