Running 1.6.3 as a service

farslayer9 · March 1, 2021, 3:55pm

Hello,

I’ve managed to successfully deploy vault 1.6.3 open source, but my problem now lies in that I need vault to run as a service, to ensure that I can run it and then log off the machine. ANd of course so that I can enable it so that it starts up when my machine reboots. I"m failing epically. Can someone point me in the right direction?

Thanks in advance

farslayer9 · March 1, 2021, 4:02pm

Here’s my config file, stored at /vault_files/config.hcl

storage “raft” {
path = “./vault/data”
node_id = “node1”
}

listener “tcp” {
address = “127.0.0.1:8200”
tls_disable = “true”
}

api_addr = “http://127.0.0.1:8200”
cluster_addr = “https://127.0.0.1:8201”
ui = true

The vault.service file I epically failed at creating properly:

[Unit]
Description=vault service
Requires=network-online.target
After=network-online.target
ConditionFileNotEmpty=/vault_files/config.hcl

[Service]
EnvironmentFile=-/etc/sysconfig/vault
Environment=GOMAXPROCS=2
Restart=on-failure
ExecStart=vault server -config=/vault_files/config.hcl
StandardOutput=/logs/vault/output.log
StandardError=/logs/vault/error.log
LimitMEMLOCK=infinity
ExecReload=/bin/kill -HUP $MAINPID
KillSignal=SIGTERM

[Install]
WantedBy=multi-user.target

The error when trying to start vault.service:

Mar 01 15:34:35 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:13] Failed to parse o…log
Mar 01 15:34:35 vault-server-001 systemd[1]: vault.service lacks both ExecStart= and ExecStop= settin…ing.
Mar 01 15:36:10 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:11] Executable path i…hcl
Mar 01 15:36:10 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:12] Failed to parse o…log
Mar 01 15:36:10 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:13] Failed to parse o…log
Mar 01 15:36:10 vault-server-001 systemd[1]: vault.service lacks both ExecStart= and ExecStop= settin…ing.
Mar 01 15:36:23 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:11] Executable path i…hcl
Mar 01 15:36:23 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:12] Failed to parse o…log
Mar 01 15:36:23 vault-server-001 systemd[1]: [/etc/systemd/system/vault.service:13] Failed to parse o…log
Mar 01 15:36:23 vault-server-001 systemd[1]: vault.service lacks both ExecStart= and ExecStop= settin…ing.

farslayer9 · March 1, 2021, 4:18pm

Updated service file, new error:

[Unit]
Description=vault service
Requires=network-online.target
After=network-online.target
ConditionFileNotEmpty=/vault_files/config.hcl

[Service]
EnvironmentFile=-/etc/sysconfig/vault
Environment=GOMAXPROCS=2
Restart=on-failure
ExecStart=/vault server -config=/vault_files/config.hcl
StandardOutput=/logs/vault/output.log
StandardError=/logs/vault/error.log
LimitMEMLOCK=infinity
ExecReload=/bin/kill -HUP $MAINPID
KillSignal=SIGTERM
ExecStop=

[Install]
WantedBy=multi-user.target

Running a systemctl start vault.service now returns no errors, but checking the status:

systemctl status vault.service
● vault.service - vault service
Loaded: loaded (/etc/systemd/system/vault.service; disabled; vendor preset: disabled)
Active: failed (Result: start-limit) since Mon 2021-03-01 16:16:30 UTC; 10s ago
Process: 2017 ExecStart=/vault server -config=/vault_files/config.hcl (code=exited, status=1/FAILURE)
Main PID: 2017 (code=exited, status=1/FAILURE)

Mar 01 16:16:30 vault-server-001 systemd[1]: vault.service: main process exited, code=exited, status=1/FAILURE
Mar 01 16:16:30 vault-server-001 systemd[1]: Unit vault.service entered failed state.
Mar 01 16:16:30 vault-server-001 systemd[1]: vault.service failed.
Mar 01 16:16:30 vault-server-001 systemd[1]: vault.service holdoff time over, scheduling restart.
Mar 01 16:16:30 vault-server-001 systemd[1]: Stopped vault service.
Mar 01 16:16:30 vault-server-001 systemd[1]: start request repeated too quickly for vault.service
Mar 01 16:16:30 vault-server-001 systemd[1]: Failed to start vault service.
Mar 01 16:16:30 vault-server-001 systemd[1]: Unit vault.service entered failed state.
Mar 01 16:16:30 vault-server-001 systemd[1]: vault.service failed.
[duanewolford@vault-server-001 /]$ sudo vim /etc/systemd/system/vault.service

ixe013 · March 1, 2021, 6:39pm

Maybe start from Hashicorp’s Vault recommented Linux service definition, make sure it works, then customize it to your needs?

Topic		Replies	Views
Vault Service Starting Error Vault vault	0	412	September 14, 2021
Cannot Start Up Vault As A Service Vault	0	200	November 30, 2022
Having trouble bringing up Vault node w/ integrated storage Vault	11	478	December 28, 2023
Vault Server as a Windows Server Service Vault windows	4	917	January 16, 2023
Vault.service existing with status 203/EXEC Vault	2	224	February 20, 2024

Running 1.6.3 as a service

Related Topics