Hello,
I’m following the example Kubernetes HA Raft documentation (Highly Available Vault Cluster with Raft | Vault | HashiCorp Developer), but when I try to join additional nodes to the first node, I get the following:
➜ ~ kubectl exec -n vault -ti vault-1 -- vault operator raft join http://vault-0.vault-internal:8200
Error joining the node to the Raft cluster: Error making API request.
URL: POST http://127.0.0.1:8200/v1/sys/storage/raft/join
Code: 500. Errors:
* failed to join raft cluster: failed to get raft challenge
command terminated with exit code 2
I have initialized and unsealed the first node. I confirmed the pods and vault-internal
service were named as expected. I notice the pods are not in Ready
state but I assume that is because the vault is still sealed.
I have also confirmed that http://vault-0.vault-internal:8200
is reachable from the vault-1
pod using netshoot.
Has the process changed without the documentation catching up?