Updating Vault version to the latest while maintaining the same raft pod leader

hardsingh · November 22, 2022, 9:27pm

We use OnDelete for the update strategy type for our Vault deployment using helm. I noticed after running the update that the leader raft pod changed to vault-2 from vault-0. We have a total of 3 replicas for the vault service. During the update, due to the strategy type we have to manually go in and delete the follower pods first and leader pod last in order for the pod to be recreated with the new updated version. We are in the process of automating the upgrade process and would like to know if there is a way to maintain the vault leader pod (vault-0) after every upgrade?

Currently running Vault version 1.12.1 with raft backend and azure key vault auto-unseal.

maxb · November 22, 2022, 9:45pm

No. The leader is dynamically elected and will naturally shift between nodes in response to issues with the cluster.

There is no facility to have a particular node be prioritised.

hardsingh · November 22, 2022, 9:59pm

If that’s the case I can use the selector flag with vault-active set to true or false to help me automate the process.

Thanks for the clarification!

Topic		Replies	Views
[1.15.4] Raft leader election unexpected behavior Vault	0	185	January 23, 2024
Upgrade Version from 1.12.1 to 1.12.2 not working as intended Vault	6	544	December 19, 2022
Failing leader election. No leader Vault	1	1365	September 12, 2022
Upgrade Vault using Helm with AWS-KMS auto unseal - Production ENV Vault	0	76	June 27, 2024
Raft (Integrated Storage) follower joined as non voters after restore Vault k8s , helm , vault	3	374	January 14, 2024

Updating Vault version to the latest while maintaining the same raft pod leader

Related topics